Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Centralize logins w/ openldap
Operating Systems Linux Red Hat Centralize logins w/ openldap Post 302322435 by sdotsen on Wednesday 3rd of June 2009 06:07:16 PM
Old 06-03-2009
Centralize logins w/ openldap
This is my first time configuring it, can someone give me advice on how you would config the architecture? For example, I'm stuck on the fail back issue. If my openldap box goes down, how do my users log in. I've heard of the following two options.

1 - create local user accounts ... ok but doesn't this defeat the purpose of having a centralize login? Now I have to create 5 users for 40+ servers.

2 - create user accounts only on openldap and allow root access on server itself if openldap fails.

I like option two but I would like to disable direct access for root. So what are some ways to get around this? I know there isn't a right way or a wrong way but what's best practice?
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Help with logins

Could someone please tell me what I would have to do so I can dial in to Solaris through a modem and login? Thanks in advance. Jomar (2 Replies)
Discussion started by: crispyco
2 Replies

2. UNIX for Advanced & Expert Users

OpenLDAP and Apache

Hello! I'm starting to panic here! I'm trying to authorize Subversion (via apache) users at my company here via LDAP. Sure everything works when just authorizing users with require valid-user But! That is not what I'm looking for, I wish to Authorize by membership in specifik groups... This... (0 Replies)
Discussion started by: Esaia
0 Replies

3. AIX

openLDAP with Aix

hello I have a P570 with 3 partitions. These partitions are available, since 1 year. So there are a lot of users, files, etc, on these partition I must now install an openldap with Debian to manage all these users. But several pb: on LDAP, we are 1 iud for user and one home directory, 1 gid... (0 Replies)
Discussion started by: pascalbout
0 Replies

4. Solaris

Centralize multiple servers administration

Hello, this is my first post, i´m trying to get some help on this issue. I´m looking for a software product (maybe SUN or TIVOLI) that provide me help on doing administrative tasks involving solaris, aix , linux & HPUX machines. This tasks are user/password creation/modification, SSH rights,... (1 Reply)
Discussion started by: amedran
1 Replies

5. UNIX for Advanced & Expert Users

Centralize multiple servers administration

Hello, this is my first post, i´m trying to get some help on this issue. I´m looking for a software product (maybe SUN or TIVOLI) that provide me help on doing administrative tasks involving solaris, aix , linux & HPUX machines. This tasks are user/password creation/modification, SSH rights,... (2 Replies)
Discussion started by: amedran
2 Replies

6. Red Hat

Need OpenLDAP Help

Hi, all: I'm studying for the RHCE and have hit the section on configuring an OpenLDAP client. I'd like to practice this, but I can't get an OpenLDAP server set up. I followed the directions in RedHat's Deployment Guide, and it looks like the server is up and running, but I can't get the... (0 Replies)
Discussion started by: rjlohman
0 Replies

7. Solaris

OpenLDAP setup

At work I'm been givin the task to move are backend servers from NIS to LDAP. We have mostly Solaris 10 servers, as well as a few Redhat servers. I am going to use openLDAP as the LDAP server. I'm looking for a good how to guide on setting up the openLDAP server. Most of the docs I have found seem... (0 Replies)
Discussion started by: bitlord
0 Replies

8. Solaris

Openldap configuration

I m using Intel solaris 10 version . I m trying to install openldap and used several documents and package versions . But every time I got CC PATH error and while I solved the CC issue , I got Barkley DB error . :wall: Is there any perticular site from where I can install and configure... (1 Reply)
Discussion started by: sanjee
1 Replies

9. Red Hat

Openldap 2.4.31 replication

Hi, I have done setup for openldap master and slave. Its working fine and replicating also. But it is working only with plane text password in syncrepl . How we can use encrypted password here also like we are using in rootpw ? Below portion is working. syncrepl rid=101 ... (3 Replies)
Discussion started by: Priy
3 Replies

10. Red Hat

I want to centralize user authentication

Right now it is just a simple environment consisting of a small number of CentOS boxes, but I would like to set up central user authentication to make things easier, especially as we expand (I've already budgeted to triple our local infrastructure and we will be also expanding geographically to... (1 Reply)
Discussion started by: xdawg
1 Replies

LEARN ABOUT CENTOS

slapo-collect

SLAPO-COLLECT(5)						File Formats Manual						  SLAPO-COLLECT(5)

NAME

       slapo-collect - Collective attributes overlay to slapd

SYNOPSIS

       /etc/openldap/slapd.conf

DESCRIPTION

       The  collect  overlay  is  used	to  provide  a relatively coarse implementation of RFC 3671 collective attributes.  In X.500, a collective
       attribute is "a user attribute whose values are the same for each member of an entry collection".

       Collective attributes are added to entries returned by a search operation when the entry is within the scope of the related ancestor.  Col-
       lective attributes can only be modified when the modification affects the related ancestor.

CONFIGURATION

       This slapd.conf option applies to the collect overlay.  It should appear after the overlay directive.

       collectinfo <DN> <attrlist>
	      Specify  the  DN	of  the  ancestor  entry and the set of related collective attributes, where attrlist is a comma-separated list of
	      attributes.  The DN should be within the naming context of the database.

FILES

       /etc/openldap/slapd.conf
	      default slapd configuration file

SEE ALSO

       slapd.conf(5), slapd-config(5), The slapo-collect(5) overlay supports dynamic configuration via back-config.

ACKNOWLEDGEMENTS

       This module was written in 2003 by Howard Chu.  This man page was written in 2008 by Pierangelo Masarati.  OpenLDAP Software  is  developed
       and  maintained	by  The  OpenLDAP  Project  <http://www.openldap.org/>.  OpenLDAP Software is derived from University of Michigan LDAP 3.3
       Release.

OpenLDAP 2.4.39 						    2014/01/26							  SLAPO-COLLECT(5)
All times are GMT -4. The time now is 07:40 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy