Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

LDAP question

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers LDAP question
# 1  
Old 01-07-2008
LDAP question
Hi;
I'm working on using LDAP to authenticate users when login to Solaris 10 box. our LDAP has about 2000 users,
I do not want to allow every one of these 2000 users to login in, i want one group only from LDAP groups (has about 100 users) to be able to login to that Solaris box.

Any idea please?
 
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Solaris

LDAP Client not connecting to LDAP server

I have very limited knowledge on LDAP configuration and have been trying fix one issue, but unsuccessful. The server, I am working on, is Solaris-10 zone. sudoers is configured on LDAP (its not on local server). I have access to login directly on server with root, but somehow sudo is not working... (9 Replies)
Discussion started by: solaris_1977
9 Replies

2. UNIX for Advanced & Expert Users

something like LDAP Administrator 2011.1 "LDAP-SQL" but for the CLI

Hi I am searching a tool like "LDAP Administrator 2011.1"/ "LDAP-SQL" but for the CLI. Wish to use LDAP-SQL in scripts (non Windows GUI environment) http://ldapadministrator.com/resources/english/2011.1/images/sqlquery_large.png Softerra LDAP Administrator 2011.1 - What's New OS is... (2 Replies)
Discussion started by: slashdotweenie
2 Replies

3. HP-UX

LDAP delete - question

Hi all, I am very new to ldap and am facing the below difficulty. When I try to add something to ldap, I get this: server# /opt/iexpress/openldap/bin/ldapmodify -f almondabc.ldif -h 127.0.0.1 -xv -D cn=Manager,dc=almondabc,dc=com -w secret ldap_initialize( ldap://127.0.0.1 ) add o:... (0 Replies)
Discussion started by: almond
0 Replies

4. Cybersecurity

LDAP authentication question

Hello, I have a Linux box with RHEL4 running on it. The box is meant to be on the DMZ. There is a directory on the box that will be remotely from time to time and I want a form of authentication on it. Presently, I have configured Basic authentication with apache but the security is not tight. I... (1 Reply)
Discussion started by: bptronics
1 Replies

5. Linux

LDAP authentication question

Hello, I have a Linux box with RHEL4 running on it. The box is meant to be on the DMZ. There is a directory on the box that will be remotely from time to time and I want a form of authentication on it. Presently, I have configured Basic authentication with apache but the security is not tight. I... (1 Reply)
Discussion started by: bptronics
1 Replies

6. UNIX and Linux Applications

LDAP authentication question

Hello, I have a Linux box with RHEL4 running on it. The box is meant to be on the DMZ. There is a directory on the box that will be remotely from time to time and I want a form of authentication on it. Presently, I have configured Basic authentication with apache but the security is not tight. I... (1 Reply)
Discussion started by: bptronics
1 Replies

7. UNIX for Dummies Questions & Answers

LDAP in Solaris question

Folks; I've read a lot of material on using LDAP for authentication in Solaris & non of them was clear or have any examples. Could any one give me a hand on how to setup/configure LDAP to authenticate users when they try to login to Solaris 10 server i have? Help will be greatly appreciated (0 Replies)
Discussion started by: Katkota
0 Replies

8. UNIX for Dummies Questions & Answers

LDAP Question

Folks; I'm trying to write a shell script on Sun Solaris to connect to LDAP browser so i can extract data from LDAP like the "cn for users, etc...". Any help :D (1 Reply)
Discussion started by: moe2266
1 Replies

9. Linux

Ldap

Can I configure LDAP in Linux Server (ES 3) to make user authentication for Internet users residing in same LAN ? Users should be running Windows XP..... So i mean a cross platform authentication..... If any one have the solution please help me with details..... (2 Replies)
Discussion started by: dipanrc
2 Replies

10. UNIX for Advanced & Expert Users

ldap

I have just installed openldap on solaris 8 machine and would like to configure ldap to store users username and password, so that users can get authenticate by ldap. How do I configure ldap to store username and password. Any suggestion would be appreciated Thanks in Advance (1 Reply)
Discussion started by: hassan2
1 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

authen::simple::ldap

Authen::Simple::LDAP(3pm)				User Contributed Perl Documentation				 Authen::Simple::LDAP(3pm)

NAME

       Authen::Simple::LDAP - Simple LDAP authentication

SYNOPSIS

	   use Authen::Simple::LDAP;

	   my $ldap = Authen::Simple::LDAP->new(
	       host    => 'ldap.company.com',
	       basedn  => 'ou=People,dc=company,dc=net'
	   );

	   if ( $ldap->authenticate( $username, $password ) ) {
	       # successfull authentication
	   }

	   # or as a mod_perl Authen handler

	   PerlModule Authen::Simple::Apache
	   PerlModule Authen::Simple::LDAP

	   PerlSetVar AuthenSimpleLDAP_host   "ldap.company.com"
	   PerlSetVar AuthenSimpleLDAP_basedn "ou=People,dc=company,dc=net"

	   <Location /protected>
	     PerlAuthenHandler Authen::Simple::LDAP
	     AuthType	       Basic
	     AuthName	       "Protected Area"
	     Require	       valid-user
	   </Location>

DESCRIPTION

       Authenticate against a LDAP service.

METHODS

       o   new

	   This method takes a hash of parameters. The following options are valid:

	   o	   host

		   Connection host, can be a hostname, IP number or a URI. Defaults to "localhost".

		       host => ldap.company.com
		       host => 10.0.0.1
		       host => ldap://ldap.company.com:389
		       host => ldaps://ldap.company.com

	   o	   port

		   Connection port, default to 389. May be overridden by host if host is a URI.

		       port => 389

	   o	   timeout

		   Connection timeout, defaults to 60.

		       timeout => 60

	   o	   version

		   The LDAP version to use, defaults to 3.

		       version => 3

	   o	   binddn

		   The distinguished name to bind to the server with, defaults to bind anonymously.

		       binddn => 'uid=proxy,cn=users,dc=company,dc=com'

	   o	   bindpw

		   The credentials to bind with.

		       bindpw => 'secret'

	   o	   basedn

		   The distinguished name of the search base.

		       basedn => 'cn=users,dc=company,dc=com'

	   o	   filter

		   LDAP filter to use in search, defaults to "(uid=%s)".

		       filter => '(uid=%s)'

	   o	   scope

		   The search scope, can be "base", "one" or "sub", defaults to "sub".

		       filter => 'sub'

	   o	   log

		   Any object that supports "debug", "info", "error" and "warn".

		       log => Log::Log4perl->get_logger('Authen::Simple::LDAP')

       o   authenticate( $username, $password )

	   Returns true on success and false on failure.

EXAMPLE USAGE

   Apple Open Directory
	   my $ldap = Authen::Simple::LDAP->new(
	       host    => 'od.company.com',
	       basedn  => 'cn=users,dc=company,dc=com',
	       filter  => '(&(objectClass=inetOrgPerson)(objectClass=posixAccount)(uid=%s))'
	   );

   Microsoft Active Directory
	   my $ldap = Authen::Simple::LDAP->new(
	       host    => 'ad.company.com',
	       binddn  => 'proxyuser@company.com',
	       bindpw  => 'secret',
	       basedn  => 'cn=users,dc=company,dc=com',
	       filter  => '(&(objectClass=organizationalPerson)(objectClass=user)(sAMAccountName=%s))'
	   );

       Active Directory by default does not allow anonymous binds. It's recommended that a proxy user is used that has sufficient rights to search
       the desired tree and attributes.

SEE ALSO

       Authen::Simple::ActiveDirectory.

       Authen::Simple.

       Net::LDAP.

AUTHOR

       Christian Hansen "chansen@cpan.org"

COPYRIGHT

       This program is free software, you can redistribute it and/or modify it under the same terms as Perl itself.

perl v5.14.2							    2012-04-23						 Authen::Simple::LDAP(3pm)