On Jan 2, 2009, at 10:24 AM, John Stoffel wrote:
> I just don't want to have to support LDAP on Solaris 8 if I can avoid
> it, though I guess it could be ok. Esp if we can easily tweak and
> restrict access in various ways.
>
> Should I look at the Padl.com stuff again? I looked at it a while
> ago, but they wanted alot of money at the time. Maybe it's
> changed... goes and looks.
>
> Hmm... looks like I can/should use either the nss_ldap, or the
> pam_ldap modules. Anyone have comments on using these on Solaris 8-10
> systems? Any issues?
I used both on Solaris 8 several years ago (2001), and they worked
well as a YP replacement. I thought I had the documentation on what
I did, but can't find it now. I could probably dig up some config
files if you need them, though.
The one thing I couldn't get working on Solaris 8 for some reason
was TLS encryption for the LDAP sessions. I ended up using IPSec
between hosts, which was surprisingly easy using the bundled Solaris 8
tools (which have since changed). I do have details on that here:
http://www.occam.com/security/
--------------------------------------------------------------------
Leon Towns-von Stauber http://www.occam.com/leonvs/
"We have not come to save you, but you will not die in vain!"
_______________________________________________
Tech mailing list
[email protected]
http://lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
