Binding a RHEL LDAP Client to a Sun Directory Server
From Brandonhutchinson.com
(Difference between revisions)
| Line 6: | Line 6: | ||
* AutoFS is configured to use the LDAP ''auto_home'' map | * AutoFS is configured to use the LDAP ''auto_home'' map | ||
| - | + | == authconfig == | |
The first step is to run ''authconfig'' to configure ''/etc/nsswitch.conf'' and ''/etc/pam.d/system-auth'' for ''pam_ldap''. | The first step is to run ''authconfig'' to configure ''/etc/nsswitch.conf'' and ''/etc/pam.d/system-auth'' for ''pam_ldap''. | ||
# '''authconfig --enableldap --enableldapauth --ldapserver="10.209.128.40 10.205.0.30" --ldapbasedn="dc=dev,dc=example,dc=com" --kickstart''' | # '''authconfig --enableldap --enableldapauth --ldapserver="10.209.128.40 10.205.0.30" --ldapbasedn="dc=dev,dc=example,dc=com" --kickstart''' | ||
| - | + | == OpenSSH == | |
The next step is to configure OpenSSH to use PAM. Make sure '''PAMAuthenticationViaKbdInt yes''' exists in ''/etc/ssh/sshd_config'' and reload the configuration with '''/sbin/service sshd reload'''. | The next step is to configure OpenSSH to use PAM. Make sure '''PAMAuthenticationViaKbdInt yes''' exists in ''/etc/ssh/sshd_config'' and reload the configuration with '''/sbin/service sshd reload'''. | ||
| - | + | == AutoFS == | |
The following entry is added to ''/etc/auto.master'' to use the LDAP ''auto_home'' map for home directories. The ''quota'' mount option is used for each ''/home'' mount. | The following entry is added to ''/etc/auto.master'' to use the LDAP ''auto_home'' map for home directories. The ''quota'' mount option is used for each ''/home'' mount. | ||
/home ldap:automountMapName=auto_home,dc=dev,dc=mrds,dc=unix,dc=navitaire,dc=com quota | /home ldap:automountMapName=auto_home,dc=dev,dc=mrds,dc=unix,dc=navitaire,dc=com quota | ||
| + | |||
| + | == Links == | ||
| + | |||
| + | * [http://www.linux-consulting.com/Amd_AutoFS/autofs-5.html Autofs Automounter HOWTO] | ||
Revision as of 15:13, 21 February 2008
In this example, I bind a RHEL 3 AS client to a Sun Directory Server Enterprise Edition 6.2 LDAP Server. The following values are used in this example:
- LDAP servers: 10.209.128.40, 10.205.0.30
- BaseDN: dc=dev,dc=example,dc=com
- pam_ldap is used, so the username and password provided during login is used as the bindDN for authentication; proxyagent authentication is not used
- AutoFS is configured to use the LDAP auto_home map
Contents |
authconfig
The first step is to run authconfig to configure /etc/nsswitch.conf and /etc/pam.d/system-auth for pam_ldap.
# authconfig --enableldap --enableldapauth --ldapserver="10.209.128.40 10.205.0.30" --ldapbasedn="dc=dev,dc=example,dc=com" --kickstart
OpenSSH
The next step is to configure OpenSSH to use PAM. Make sure PAMAuthenticationViaKbdInt yes exists in /etc/ssh/sshd_config and reload the configuration with /sbin/service sshd reload.
AutoFS
The following entry is added to /etc/auto.master to use the LDAP auto_home map for home directories. The quota mount option is used for each /home mount.
/home ldap:automountMapName=auto_home,dc=dev,dc=mrds,dc=unix,dc=navitaire,dc=com quota
