hi is there a brief turorial, guide or something to correctly setup an openldap directory service to authenticate users, and using pam ?
On Wednesday 16 November 2005 16:47, Jonathan Vargas wrote:
hi
is there a brief turorial, guide or something to correctly setup an openldap directory service to authenticate users, and using pam ?
I don't think either brief _or_ easy. :-( I've been trying to do this for 4 days straight now. I've tried about a dozen tutorials/howtos/etc, and none of them work, at least with 10.0 x86_64 on the server and 9.3 i386 for clients. I'd be more than happy to write up a nice howto and host it for ldap on small home networks, if any you who are more more versed with it will lend a hand. Regards, Mark
Jonathan Vargas wrote:
is there a brief turorial, guide or something to correctly setup an openldap directory service to authenticate users, and using pam ?
I found http://enterprise.linux.com/enterprise/05/09/15/1930256.shtml?tid=129 quite good. Joachim -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Joachim Schrod Email: jschrod@acm.org Roedermark, Germany
On Thursday 17 November 2005 06:47, Joachim Schrod wrote:
Jonathan Vargas wrote:
is there a brief turorial, guide or something to correctly setup an openldap directory service to authenticate users, and using pam ?
I found http://enterprise.linux.com/enterprise/05/09/15/1930256.shtml?tid=129 quite good.
That is one of the tutorials I tried, but it didn't work. Building the ldap directory is _relatively_ easy, it is getting the clients to authenticate is nigh impossible, at least in my case. Mark
Joachim
-- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Joachim Schrod Email: jschrod@acm.org Roedermark, Germany
Mark A. Taff wrote:
On Thursday 17 November 2005 06:47, Joachim Schrod wrote:
Jonathan Vargas wrote:
is there a brief turorial, guide or something to correctly setup an openldap directory service to authenticate users, and using pam ?
I found http://enterprise.linux.com/enterprise/05/09/15/1930256.shtml?tid=129 quite good.
That is one of the tutorials I tried, but it didn't work. Building the ldap directory is _relatively_ easy, it is getting the clients to authenticate is nigh impossible, at least in my case.
I have to admit that I didn't try it on a SUSE, but on a Debian system -- but the distribution differences should be significant in that case, should they? You have pam_ldap installed? You configured nsswitch.conf and pam.d/common-* to use it? Or, completely different, did you try out LDAP Client Configuration in yast? It's supposed to enabling user authentication via OpenLDAP. -- At least, that what's the help file says; I have not used it (yet). Keep us posted on your progress, if you have any. Joachim -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Joachim Schrod Email: jschrod@acm.org Roedermark, Germany
On Thursday 17 November 2005 16:58, Joachim Schrod wrote:
Mark A. Taff wrote:
On Thursday 17 November 2005 06:47, Joachim Schrod wrote:
Jonathan Vargas wrote:
is there a brief turorial, guide or something to correctly setup an openldap directory service to authenticate users, and using pam ?
I found http://enterprise.linux.com/enterprise/05/09/15/1930256.shtml?tid=129 quite good.
That is one of the tutorials I tried, but it didn't work. Building the ldap directory is _relatively_ easy, it is getting the clients to authenticate is nigh impossible, at least in my case.
I have to admit that I didn't try it on a SUSE, but on a Debian system -- but the distribution differences should be significant in that case, should they?
There are some differences, but I think I compensated appropriately.
You have pam_ldap installed? You configured nsswitch.conf and pam.d/common-* to use it?
I have tried multiple variations on editing nsswitch.conf and the pam.d/common-* files. I've tried using both Yast and Luma. They both seem to add/edit/delete users groups in the LDAP database. When I add a new user, it will even create a new /home/$user for them. Yet I can't even su to the new user. `getent passwd` doesn't show any of the LDAP users. The most I can get is a extra line at the end of the `getent passwd` like "+::0:):::"
Or, completely different, did you try out LDAP Client Configuration in yast? It's supposed to enabling user authentication via OpenLDAP. -- At least, that what's the help file says; I have not used it (yet).
Keep us posted on your progress, if you have any.
If I get this figured out, I will write a nice howto.
Joachim
-- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Joachim Schrod Email: jschrod@acm.org Roedermark, Germany
I have Nero 6.6.0.16 on a windows xp pro computer and have Suse 10.0 on 5 ISOs which are in zip files. Do they need to be unzipped first or burned as is? I have many pages of instructions and PDFs and can't find this item in any of them. Thank You Joe Harrison
On Friday 18 November 2005 11:08 am, Joseph Harrison wrote:
I have Nero 6.6.0.16 on a windows xp pro computer and have Suse 10.0 on 5 ISOs which are in zip files. Do they need to be unzipped first or burned as is? I have many pages of instructions and PDFs and can't find this item in any of them.
Okay, let me get this straight. You are currently running WinXP with nero. You've downloaded SUSE 10 and want to know how to burn them? If that's the case, they may be identified as zip files but they are actually image files. I wouldn't use Nero for burning them. I'm not actually sure it works. When I downgrade to XP at work I use the isorecorder power toy. It works like a charm. http://isorecorder.alexfeinman.com/v1.htm Here's the link for the one which works with SP2, if you're silly enough to load that POS.. http://isorecorder.alexfeinman.com/isorecorder.htm -- kai www.perfectreign.com linux - genuine windows replacement part
<snip>
If that's the case, they may be identified as zip files but they are actually image files. I wouldn't use Nero for burning them. I'm not actually sure it works.
Yes it does. I did it. I know that this is a SUSE help list, but all this person would need to do is look around a bit in the software. Hint for the original poster: It is under the Recorder menu.
Kai Ponte wrote:
On Friday 18 November 2005 11:08 am, Joseph Harrison wrote:
I have Nero 6.6.0.16 on a windows xp pro computer and have Suse 10.0 on 5 ISOs which are in zip files. Do they need to be unzipped first or burned as is? I have many pages of instructions and PDFs and can't find this item in any of them.
Okay, let me get this straight. You are currently running WinXP with nero. You've downloaded SUSE 10 and want to know how to burn them?
If that's the case, they may be identified as zip files but they are actually image files. I wouldn't use Nero for burning them. I'm not actually sure it works...
Nero does work with ISO files. It works quite well actually. The files don't need to be unzipped. When you start up Nero Burning ROM, just go to the menu and click "Recorder", then select "Burn Image". Then navigate to the ISO image that you want to burn and select it.
Joseph Harrison wrote:
I have Nero 6.6.0.16 on a windows xp pro computer and have Suse 10.0 on 5 ISOs which are in zip files. Do they need to be unzipped first or burned as is? I have many pages of instructions and PDFs and can't find this item in any of them.
Why are they zipped? You'll have to extract the original ISO files and use them.
Greets,
Or, completely different, did you try out LDAP Client Configuration in yast? It's supposed to enabling user authentication via OpenLDAP. -- At least, that what's the help file says; I have not used it (yet).
Keep us posted on your progress, if you have any.
Joachim
I have tried the Yast LDAP client too, but it never show me the username to login in as the ldap admin. It shows a prompt like: Password: [ ] Administrator: (Login) As you can see there is no text field to enter the login. It just shows the text Administrator and only that. ???
On Friday 18 November 2005 07:50, Jonathan Vargas wrote:
Greets,
Or, completely different, did you try out LDAP Client Configuration in yast? It's supposed to enabling user authentication via OpenLDAP. -- At least, that what's the help file says; I have not used it (yet).
Keep us posted on your progress, if you have any.
Joachim
I have tried the Yast LDAP client too, but it never show me the username to login in as the ldap admin. It shows a prompt like:
Password: [ ] Administrator: (Login)
As you can see there is no text field to enter the login. It just shows the text Administrator and only that.
I think you probably need to specify the rootbinddn in /etc/slad.conf, but then I can't even get my own setup working properly... However, I have tracked down a kind sysadmin how is going to help me fix my problem and consequently write a howto/tutorial. Once I get a solution, I'll let this list know. Also, when I have a draft of the howto posted, I plan on asking this list for feedback. I hope we can slay the mystery and confusion that surrounds LDAP Authentication. Regards, Mark
???
participants (8)
-
James Knott -
Joachim Schrod -
Jonathan Vargas -
Joseph Harrison -
Kai Ponte -
Lake-Wind -
Mark A. Taff -
Marshall Heartley