[CoLoCo] If you don't use AD how can you authenticate users?

Kevin Fries kfries at cctus.com
Wed Jan 23 14:25:36 GMT 2008


On Tue, 2008-01-22 at 04:20 -0700, W S wrote:
> Of course,
> all this means having to twiddle some /etc/pam.d files by hand,
> touching the /etc/nsswitch.conf file, and messing with the
> /etc/ldap.conf file.

Not as of Gutsy
https://wiki.ubuntu.com/AuthClientConfig

I did an 
$ sudo auth-client-config -a -p lac_ldap

pam, nss were set automatically.

As for the ldap.conf file, well...
The autoconfig does not work 100% correct.  Run it, it will set most
things, like admin dn and password, but somehow fails to set the server
url (leaves it as localhost always) or the base dn (leaves it as
dn=example,dc=com).

There is also one bug fix in ldap.conf.  Turn binding from hard to soft
or some packages will very likely hand on reboot.

All in all, it takes about 1 minute to have a client connected onto LDAP
authentication once the server is set up.

-- 
Kevin Fries
Senior Linux Engineer
Computer and Communications Technology, Inc
A Division of Japan Communications Inc.



More information about the Ubuntu-us-co mailing list