[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Re: LDAP everywhere ...



I wrote a couple of articles for PCQ last year on setting up and configuring
LDAP for authentication on Linux. You can read them up at the PCQ site. I've
also done a fair amount of work on integrating almost all auth against a
LDAP server, including Samba. Samba TNG allows the use of LDAP as a backend,
though I will warn you it is not yet ready for production use. I've done
extensive work with this, including ldaputils
(http://www.sourceforge.net/projects/ldaputils) which is a set of perl
scripts to administer users and groups under Linux. 

You can't auth Samba 2.0.7 against LDAP though.

Almost any pam-aware application can use LDAP for auth using pam_ldap and
nss_ldap. I have a sendmail setup which does precisely what you asked. There
are no changes in sendmail required.

Contact me if you need any further details.

nikk




On Fri, Jun 08, 2001 at 11:11:09PM +0530, Sandip Bhattacharya wrote:
> Hi!
> I am trying to implement LDAP based authentication all over our LAN.  
> I have got the server set up and migrated /etc/passwd to LDIF and then
> to the server. Our intranet applications have started authenticating
> using the database already. However, I need to migrate the rest of the
> applications using authentiation to this database too... my targets
> are thus:
> 1. logins would be  using pam_ldap. So that takes care of all the
> telnets happening to the linux boxes round the LAN.
> 2. We are using Sendmail in our gateway. I need to use
> system-account-less mailboxes for all our users - i.e. mails are being
> stored according to users, but they don't have system accounts on the
> machine. 
> 3. ipop3d/imapd authentication through LDAP
> 4. Samba authentication through LDAP. I heard Samba TNG can do that,
> can I do it with Samba 2.0.7?
> 
> Any suggestions, folks??
> 
> - Sandip
> 
> 
> -- 
> -------------------------------------
> Sandip Bhattacharya 
> sandipb @ bigfoot.com
> http://www.sandipb.net
> -------------------------------------
> 
> ------------------------------------------------
> An alpha version of a web based tool to manage
> your subscription with this mailing list is at
> http://lists.linux-india.org/cgi-bin/mj_wwwusr
> 

-- 
There are certain things men must do to remain men.
		-- Kirk, "The Ultimate Computer", stardate 4929.4