On the SSL Wiki

LDAP authentication

To enable LDAP authentication from the Linux lab machines, the following files need to be updated:

Debian and related distros

  • /etc/ldap/ldap.conf
  • /etc/ldap/cscabundle.crt
  • /etc/nsswitch.conf
  • /etc/pam.d/common-auth
  • /etc/pam_ldap.conf

CentOS/Fedora

  1. Run /usr/sbin/authconfig-tui.
  2. Check “Cache Results”, “Use LDAP”, and “Local Information is Sufficient”. Choose Next.
  3. Leave Use TLS unchecked.
  4. Enter hostname of LDAP server (e.g. ldap://ldap1.cs.unm.edu/)
  5. Enter LDAP base domain name (dc=cs,dc=unm,dc=edu)
  6. Save and exit.

This should be sufficient to authenticate against LDAP.

TLS for some reason currently does not work for CentOS to the LDAP server. Enabling TLS will prevent anyone but root from logging in unless the proper configuration is found, so please don't do it.

 
/var/www/ssl/data/pages/ldap_authentication.txt · Last modified: 2008/03/20 17:43 by pmw     Back to top
Get Firefox! Recent changes RSS feed Creative Commons License Donate Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki