You are not logged in.
- Topics: Active | Unanswered
#1 2018-04-03 23:37:14
- kh335m
- Member
- Registered: 2018-04-03
- Posts: 1
openldap client from source
Hi,
I am trying to configure openldap client from source.
Here is my ldap.conf file
BASE dc=cloud,dc=lab
URI ldap://idm01.cloud.lab:389
BINDDN cn=admin,dc=cloud,dc=lab
#SIZELIMIT 12
TIMELIMIT 5
#DEREF never
ldap_version 3
pam_filter objectclass=posixAccount
pam_login_attribute uid
pam_member_attribute memberuid
nss_base_passwd ou=Computers,dc=cloud,dc=lab
nss_base_passwd ou=People,dc=cloude,dc=lab
nss_base_shadow ou=People,dc=cloud,dc=lab
nss_base_group ou=Group,dc=cloud,dc=lab
pam configure
#system-authentication
auth required pam_env.so
auth sufficient pam_ldap.so
auth sufficient pam_unix.so nullok
auth required pam_deny.so
account sufficient pam_ldap.so
account required pam_unix.so
password sufficient pam_ldap.so
password sufficient pam_unix.so use_authtok nullok sha512
password required pam_deny.so
session required pam_limits.so
session required pam_unix.so
session optional pam_ldap.so
But I can not connect the ldap server. Do I need to start anything or my configuration wrong?
when I run getent, I am seeing local user.
Offline
#2 2018-04-04 13:30:00
- Lone_Wolf
- Forum Moderator
- From: Netherlands, Europe
- Registered: 2005-10-04
- Posts: 11,971
Re: openldap client from source
Looks like you miss some settings, check https://wiki.archlinux.org/index.php/OpenLDAP
Disliking systemd intensely, but not satisfied with alternatives so focusing on taming systemd.
(A works at time B) && (time C > time B ) ≠ (A works at time C)
Offline