Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: PAM_LDAP and NSS_LDAP
Operating Systems AIX PAM_LDAP and NSS_LDAP Post 302507283 by juredd1 on Wednesday 23rd of March 2011 11:29:17 AM
Old 03-23-2011
I don't fully understand the term "LDAP for AIX" as you mention the LDAP server being Novell eDirectory server. I am guessing you are meaning you are using secldapclntd on the client side and the backend LDAP server is Novell. We are using IBM's flavor of LDAP on AIX 5.3 and AIX 6.1. Fileset being ldap.client.rte (secldapclntd) the client side and idsldap.clt64bit61.rte on the server side which I think is officially called Identity Directory Server but not sure. Our database servers are running Informix 11.50. The Informix db serves are not using LDAP locally as they are use normal AIX security. So basically we have 8 application servers that are using LDAP to authenticate the users into the system. Then we the users start running the application which starts talking to the db servers there is a trust set up (/etc/hosts.equiv) between the application servers and the Informix db servers. The users running the application are not real users on the db side we have generic entries in the /etc/passwd and /etc/security/password file for each user. The user does not have a password or home dir on the db side. the only real users on the db side is the the admin accounts and the db admin accounts.

Not sure my environment was anything like you were looking for but wanted to respond in-case I could be of any assistance. If not sorry to have wasted the space.
This User Gave Thanks to juredd1 For This Post:
zaxxon
 

2 More Discussions You Might Find Interesting

1. Solaris

nss_ldap by padl on Solaris 10

Hi all! (I don't know whether this question should go here or not. I'm newbie on forum) So, i have trouble using nss_ldap by padl with Openldap database. I've installed nss_ldap by padl(padl.com) and i think it installed ok. It was not easy because i had to fix some source files a little by... (0 Replies)
Discussion started by: kukuruku
0 Replies

2. Debian

nss_ldap failed to bind to LDAP server

Hi every body! I have an debian lenny server with samba and openldap on it. 1. Problem: i can not login ldap user auth.log: nss_ldap: could not connect to any LDAP server as cn=admin,dc=innsbruck,dc=sti,dc=at - Can't contact LDAP server 2. Problem: auth.log: nss_ldap: failed to bind to... (1 Reply)
Discussion started by: magge
1 Replies

LEARN ABOUT MOJAVE

net::ldap::extra::ad

Net::LDAP::Extra::AD(3) 				User Contributed Perl Documentation				   Net::LDAP::Extra::AD(3)

NAME

       Net::LDAP::Extra::AD -- AD convenience methods

SYNOPSIS

	 use Net::LDAP::Extra qw(AD);

	 $ldap = Net::LDAP->new( ... );

	 ...

	 if ($ldap->is_AD || $ldap->is_ADAM) {
	   $ldap->change_ADpassword($dn, $old_password, $new_password);
	 }

DESCRIPTION

       Net::LDAP::Extra::AD tries to spare users the necessity to reinvent the wheel again and again in order to correctly encode password strings
       so that they can be used in AD password change operations.

       To do so, it provides the following methods:

METHODS

       is_AD ( )
	   Tell if the LDAP server queried is an Active Directory Domain Controller.

	   As the check is done by querying the root DSE of the directory, it works without being bound to the directory.

       is_ADAM ( )
	   Tell if the LDAP server queried is running AD LDS (Active Directory Lightweight Directory Services), previously known as ADAM (Active
	   Directoy Application Mode).

	   As the check is done by querying the root DSE of the directory, it works without being bound to the directory.

       change_ADpassword ( DN, OLD_PASSWORD, NEW_PASSWORD )
	   Change the password of the account given by DN from its old value OLD_PASSWORD to the new value NEW_PASSWORD.

	   This method requires encrypted connections.

       reset_ADpassword ( DN, NEW_PASSWORD, OPTIONS )
	   Reset the password of the account given by DN to the value given in NEW_PASSWORD.  OPTIONS is a list of key/value pairs. The following
	   keys are recognized:

	   force_change
	       If TRUE, the affected user is required to change the password at next login.

	   For this method to work, the caller needs to be bound to AD with sufficient permissions, and the connection needs to be encrypted.

AUTHOR

       Peter Marschall <peter@adpm.de<gt>

COPYRIGHT

       Copyright (c) 2012 Peter Marschall. All rights reserved. This program is free software; you can redistribute it and/or modify it under the
       same terms as Perl itself.

perl v5.18.2							    2013-12-23						   Net::LDAP::Extra::AD(3)
All times are GMT -4. The time now is 06:21 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy