[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Re: LDAP everywhere ...

I wrote a couple of articles for PCQ last year on setting up and configuring
LDAP for authentication on Linux. You can read them up at the PCQ site. I've
also done a fair amount of work on integrating almost all auth against a
LDAP server, including Samba. Samba TNG allows the use of LDAP as a backend,
though I will warn you it is not yet ready for production use. I've done
extensive work with this, including ldaputils
(http://www.sourceforge.net/projects/ldaputils) which is a set of perl
scripts to administer users and groups under Linux. 

You can't auth Samba 2.0.7 against LDAP though.

Almost any pam-aware application can use LDAP for auth using pam_ldap and
nss_ldap. I have a sendmail setup which does precisely what you asked. There
are no changes in sendmail required.

Contact me if you need any further details.


On Fri, Jun 08, 2001 at 11:11:09PM +0530, Sandip Bhattacharya wrote:
> Hi!
> I am trying to implement LDAP based authentication all over our LAN.  
> I have got the server set up and migrated /etc/passwd to LDIF and then
> to the server. Our intranet applications have started authenticating
> using the database already. However, I need to migrate the rest of the
> applications using authentiation to this database too... my targets
> are thus:
> 1. logins would be  using pam_ldap. So that takes care of all the
> telnets happening to the linux boxes round the LAN.
> 2. We are using Sendmail in our gateway. I need to use
> system-account-less mailboxes for all our users - i.e. mails are being
> stored according to users, but they don't have system accounts on the
> machine. 
> 3. ipop3d/imapd authentication through LDAP
> 4. Samba authentication through LDAP. I heard Samba TNG can do that,
> can I do it with Samba 2.0.7?
> Any suggestions, folks??
> - Sandip
> -- 
> -------------------------------------
> Sandip Bhattacharya 
> sandipb @ bigfoot.com
> http://www.sandipb.net
> -------------------------------------
> ------------------------------------------------
> An alpha version of a web based tool to manage
> your subscription with this mailing list is at
> http://lists.linux-india.org/cgi-bin/mj_wwwusr

There are certain things men must do to remain men.
		-- Kirk, "The Ultimate Computer", stardate 4929.4