Hi John,
I have done some Centralized LDAP stuff using openldap(w/ Berkeley DB,
w/ SSL/TLS, or iDS51 as secondary/primary), + + openssl + openssh +
pam_ldap + nss_ldap, and would like to share the experience. I avoided
cyrus-sasl and used Simple BIND w/ TLS.
You may find my home page useful, or not:
http://web.singnet.com.sg/~garyttt/
Rgds
Gary
-----Original Message-----
From: J. A. Landamore [mailto:jal@mcs.le.ac.uk]
Sent: Tuesday, October 05, 2004 11:26 PM
To: focus-sun@securityfocus.com
Subject: OffTopic - Solaris 9 & openldap
Apologies for this off topic post, but I'm struggling as to where to go
for
information.
For various reasons, primarily that the LDAP server needs to access the
LDAP
repository, we are running one of our domains with OpenLDAP (the other
domain
where we have a dedicated server runs iDS5 with no problems) Whilst the
Linux
clients can authenticate against LDAP successfully I have been unable to
get the
Solaris 9 clients to do so. If I login with a local account getent and
ldaplist
return correct entries, it is just the authentication of users at login
that
fails. I've found documents that describe how to do interoperate
Solaris 9 and
OpenLDAP using PADL nss-ldap but not with native Solaris nss-ldap. Can
anyone
provide pointers as to what I'm missing and how I can use native
nss-ldap?
Unless you think your reply will interest the whole list please reply
directly
to me.
Thanks for any help
John Landamore
School of Mathematics & Computer Science
University of Leicester
University Road, LEICESTER, LE1 7RH
J.Landamore@mcs.le.ac.uk
Phone: +44 (0)116 2523410 Fax: +44 (0)116 2523604
