Configure LDAP Client2013/05/10 |
| [1] | Configure LDAP Client |
|
root@www:~#
aptitude -y install libnss-ldap libpam-ldap ldap-utils (1) specify LDAP server's URI  (2) specify suffix  (3) specify LDAP version  (4) specify suffix for LDAP account for root  (5) set password for LDAP account for root  (6) click OK  (7) select the one you like. ( this example selects 'Yes' )  (8) select the one you like. ( this example selects 'No' )  (9) specify LDAP admin account's suffix  (10) specify password for LDAP admin account 
root@www:~#
vi /etc/nsswitch.conf # line 7: add passwd: compat ldap group: compat ldap shadow: compat
ldap # line 19: change netgroup: ldap
root@www:~#
vi /etc/pam.d/common-password # line 26: change ( remove 'use_authtok' ) password [success=1 user_unknown=ignore default=die] pam_ldap.so try_first_pass
root@www:~#
vi /etc/pam.d/common-session # add at the last if needed ( create home directory automatically at first login ) session optional pam_mkhomedir.so skel=/etc/skel umask=077
root@www:~#
www login: shutdown -r now cent # user on LDAP Password: Linux www 3.2.0-4-amd64 #1 SMP Debian 3.2.41-2 x86_64 The programs included with the Debian GNU/Linux system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Creating directory '/home/cent'.fedora@www:~$ # just logined fedora@www:~$ # try to change LDAP password Enter login(LDAP) password: # input current password New password: # input new password Re-enter new password: # confirm LDAP password information changed for cent passwd: password updated successfully # just changed |
Matched Content