[EMAIL PROTECTED] wrote: > On Tue, 5 Sep 2006 at 17:51, Nicolas MASS� wrote: >> On Tuesday 05 September 2006 17:35, Andrew D. Fant wrote: >>> I know that there is an NIS emulation mode for ldap, but is there a more >>> elegant way to have a local password file, where logins are checked >>> first >>> against the directory, and if there is no ldap entry for the user, >>> falling >>> back to the local files? >> >> In /etc/nsswitch.conf, you can have an entry like this : >> >> passwd: ldap files >> shadow: ldap files >> group: ldap files > > I don't know much about this, but given Andrew's constraints and what > the nsswitch.conf man page says I'd think he just wants: > > shadow: ldap files > > without the other two, since he said that he doesn't want everyone > in the enterprise to have access to the gentoo boxes, and that the > group structure is different. >
Thanks to both of you for the quick response, I'll give these a try soon and see how they go. By the end of the week, I'll try for a follow up to let everyone know how it went. Thanks again -- Andrew Fant | The lion and the calf shall lie | Disclaimer: [EMAIL PROTECTED] | down together, but the calf won't | Do you REALLY TCCS/USG | get much sleep. | think I can Tufts University | W. Allen | speak for Tufts? -- [email protected] mailing list
