Re: [OpenIndiana-discuss] Compile nss_ldap
The Ldap server is hosted on linux and couldnt find any ldap client that is compiled already for OI. Any other way to get client working is fine. Pls advice. On Mon, Aug 13, 2012 at 6:57 PM, Jim Klimov jimkli...@cos.ru wrote: 2012-08-13 14:31, Ram Chander пишет: Hi, Am trying to setup ldap client on OI. I get below error when tried to compile nss_ldap-265 ( downloaded from padl.com ). Can I pls have steps to compile it properly ? Am I missing something, or why doesn't an included ldap-client (software and SMF service) suit your needs? You did not find it, or you need something different/newer/better/etc.? It was in OpenSolaris since... forever, and I think it must be in OI as well. Quite documented it was for (Open)Solaris, so there should be no big troubles setting that up. //Jim Klimov ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] Compile nss_ldap
2012/8/14 Ram Chander ramqu...@gmail.com: The Ldap server is hosted on linux and couldnt find any ldap client that is compiled already for OI. Any other way to get client working is fine. Pls advice. http://docs.oracle.com/cd/E19963-01/html/821-1455/clientsetup-1.html -f ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] Compile nss_ldap
I use LDAP for login and stuff, we use OpenLDAP on our servers (and because I use a laptop I have an OpenLDAP replica running on my local machine) LDAP packages installed: jadams@jadlaptop:~$ pkg list | grep -i ldap library/apr-util-13/apr-ldap 1.3.9-0.151.1.4i-- library/openldap 2.4.21-0.151.1.4 i-- naming/ldap 0.5.11-0.151.1.4 i-- All Possible LDAP packages: jadams@jadlaptop:~$ pkg search ldap INDEX ACTION VALUE PACKAGE basenamedirusr/ruby/1.8/share/ri/1.8/system/URI/LDAP pkg:/runtime/ruby-18@1.8.7.174-0.151.1.4 basenamedirusr/jruby/1.1.3/share/ri/1.8/system/URI/LDAP pkg:/runtime/java/jruby@1.1.3-0.151.1.4 pkg.summary setLDAP Libraries pkg:/naming/ldap@0.5.11-0.151.1.4 pkg.description setLdap libraries in for software development of dynamically linked executables pkg:/naming/ldap@0.5.11-0.151.1.4 basenamedirlib/svc/manifest/network/ldap pkg:/library/openldap@2.4.21-0.151.1.4 basenamedirlib/svc/manifest/network/ldap pkg:/SUNWcs@0.5.11-0.151.1.4 basenamedirvar/svc/manifest/network/ldap pkg:/SUNWcs@0.5.11-0.151.1.4 basenamedirusr/lib/ldap pkg:/system/network/nis@0.5.11-0.151.1.4 basenamedirvar/ldap pkg:/system/network/nis@0.5.11-0.151.1.4 pkg.fmrisetopenindiana.org/naming/ldap pkg:/naming/ldap@0.5.11-0.151.1.4 On 14 August 2012 07:24, Ram Chander ramqu...@gmail.com wrote: The Ldap server is hosted on linux and couldnt find any ldap client that is compiled already for OI. Any other way to get client working is fine. Pls advice. On Mon, Aug 13, 2012 at 6:57 PM, Jim Klimov jimkli...@cos.ru wrote: 2012-08-13 14:31, Ram Chander пишет: Hi, Am trying to setup ldap client on OI. I get below error when tried to compile nss_ldap-265 ( downloaded from padl.com ). Can I pls have steps to compile it properly ? Am I missing something, or why doesn't an included ldap-client (software and SMF service) suit your needs? You did not find it, or you need something different/newer/better/etc.? It was in OpenSolaris since... forever, and I think it must be in OI as well. Quite documented it was for (Open)Solaris, so there should be no big troubles setting that up. //Jim Klimov ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] Compile nss_ldap
2012-08-14 10:24, Ram Chander пишет:
The Ldap server is hosted on linux and couldnt find any ldap client that is
compiled already for OI. Any other way to get client working is fine. Pls
advice.
You were given one link; back in the days I found this one immensely
useful and detailed (Soup To Nuts Sun DSEE, by Brandon Hutchinson):
http://brandonhutchinson.com/wiki/Soup_To_Nuts_Sun_DSEE#Bind_an_LDAP_client
This is inclined toward setting up a Sun DSEE server (so you can skip
those parts) and Solaris 8/9/10 clients via search profiles and proxy
accounts (which you may need to implement on your LDAP server).
The Solaris 10 parts should be applicable to OpenSolaris and OI as well.
As Brandon reminds, when you ldapclient init, the /etc/nsswitch.conf
file is overwritten with /etc/nsswitch.ldap. This default file
(/etc/nsswitch.ldap), does not use DNS when looking up hostnames
(naming info is assumed to be in LDAP), and only references local
files when LDAP is not available. You may also need customizations
to use LDAP netgroups to define user sets for particular client hosts.
Also note that some programs are pre-built as OpenLDAP clients. For
those you will need a /etc/ldap.conf file with OpenLDAP settings
(the directory server address, {proxy user} login info, base dn and
stuff) - but that is separate from the OS LDAP integration and only
regards those programs and libraries.
I found it useful to set up a single client properly, tarball the
LDAP config files (/etc/nsswitch.conf, /etc/ldap.conf, /etc/pam*,
/var/ldap/) and just unpack these tarballs on new clients (local
or global zones) - this is sufficient to afterwards just issue
svcadm enable -r ldap/client and have this new client integrated.
If you do use LDAP netgroups, you'd also have to add proper include
lines into /etc/passwd and /etc/shadow (groups use another mechanism).
HTH,
//Jim Klimov
___
OpenIndiana-discuss mailing list
OpenIndiana-discuss@openindiana.org
http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] Compile nss_ldap
2012-08-13 14:31, Ram Chander пишет: Hi, Am trying to setup ldap client on OI. I get below error when tried to compile nss_ldap-265 ( downloaded from padl.com ). Can I pls have steps to compile it properly ? Am I missing something, or why doesn't an included ldap-client (software and SMF service) suit your needs? You did not find it, or you need something different/newer/better/etc.? It was in OpenSolaris since... forever, and I think it must be in OI as well. Quite documented it was for (Open)Solaris, so there should be no big troubles setting that up. //Jim Klimov ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
