Andrei Verovski (aka MacGuru) <andreil1@starlett.lv> wrote on 31/03/2005 16.36.19:

Right now I have 2 servers (corporate + mail/web), which have equal user accounts. What I would like to do is to use corporate server as central storage for user/password information. Corporate server offers file services (Samba, Netatalk, NFS + Printing/Faxing) + home directories for users, while mail/web server - only mail for company employes (and web).

It is just too stupid to enter all accounts 3 times: on corporate servers for UNIX users, then on the same PC for Samba users, and third time on mail server.

Right now all user/password information is being stored in /etc/shadow and /etc/samba/smbpasswd.

The question is how to migrate all this on LDAP, and how to instruct mail server to take all user/password information from corporate server.

You can configure PAM to use LDAP and thus "eliminating" the need of creating local posix users. As far as the mail is concerned, you will have several steps to follow, in the sense that both the webmail and the smtp/pop3 need to be configured to support ldap authentication and you should find all the information in the mta documentation. you will probably have to extend the ldap schema: we had to do it to have qmail and vpomail authenticated again an LDAP directory (I also tested it with Lotus Domino and was able to use openldap users for domino web-based application) Hope it helps Gaël