Hi All,
I have configured OpenLDAP sucessfully and set following results indicating that the user is loaded on the LDAP database
I've also added an overall security policy in the LDAP database
But it seems that this policy is not activated, for example the pwdMinLength: is set to 3, but when the user changes his/her password, it seems that the Solaris policy takes over from the /etc/default/passwd file
It seems that the Solaris password policy forces the user to use the Solaris policy and ignore the LDAP ppolicy, below is my slapd.conf file
Any ideas would be highly appriciated!!
Last edited by Scott; 07-12-2011 at 07:12 AM..
Reason: Please use code tags
Hi,
I currently working on the same thing as you. Are you using the Solaris native client or anther LDAP client? I understand that there is a few extra steps involved if you use the native client. I see you have the extra schemas you need for Solaris. I would look at your PAM
Im still learning myself so I hope you find your answer
Hi,
I'm using the native Solaris 10 client and I'm initilizing it with the following
Yea, I think that my proplem lies with the pam.conf file, but I've tried so many combinations.... at the moment for ssh I have
I was never able to get the openldap server to run right on Solaris 10, I did get it running on Solaris 11 though. I opted to install the openldap server on CentOS because openldap just runs/configures easier on Linux. I'm in the process of configureing the Solaris clients to authenticate off of the openldap server. I'm experimenting on different ldap clients.
Which installer did you use to install the openldap on Solaris? Did you compile the source from openldap or use sunfreeware, blastware and opencw packages?
Hi,
I downloaded the software from SunFreeWare, openldap-2.4.24,tar.gz and installed it with pkgadd, keep in mind that you might find some dependancies, below is and extract from my scripts that highlights what will be installed, I just uninstalled the packages and reinstalled these below ---------- Post updated at 01:56 AM ---------- Previous update was at 12:43 AM ----------
mmmh getting closer, when I start slapd in debug mode, it starts up but in the debug log
The line "module ppolicy.la: null module registered" bothers me, as this is exactly my problem, the ppolicy overlay does not work, any suggestions?
Hey whats up.
I have not been able to work on the LDAP stuff latly.
I used this guide as well as others to install openldap on Solaris. http://uminac.com/wp-content/uploads...65774196-1.pdf
Now he uses blastware to install openldap on Solaris. This guide has sample files at the end that you can use or review. What I don't like is he sets up TLS/SSL right away during the initial setup and uses a role to run openldap. I wanted is simpler setup for testing. I can always lock it down after I have a better understanding of LDAP.
This is what he has for the module stuff.
My slapd.conf looks almost exacty like the one on this site, because I used this guide and the "RedHat Deployment Guide" to install openldap on Centos. Centralize user accounts with OpenLDAP
There is no module stuff in this file. This guide is missing stuff put I have yet to find a complete one.
Hi,
I have done setup for openldap master and slave.
Its working fine and replicating also.
But it is working only with plane text password in syncrepl .
How we can use encrypted password here also like we are using in rootpw ?
Below portion is working.
syncrepl rid=101
... (3 Replies)
I hope this is the right place to post this and that I can get some help. I pretty much suck at troubleshooting build issues.
we are running oracle red-hat linux 2.6.32-200.20.1.el5uek #1 SMP Fri Oct 7 02:29:42 EDT 2011 x86_64 x86_64 x86_64 GNU/Linux
trying to build the latest stable version of... (3 Replies)
Hi All,
I have configured OpenLDAP sucessfully and set following results indicating that the user is loaded on the LDAP database
test5:/ $ cat /etc/passwd | grep admin777
test5:/ $ getent passwd admin777
admin777:x:5011:1000::/:/bin/bash
test5:/ $ id admin777
uid=5011(admin777)... (0 Replies)
I m using Intel solaris 10 version . I m trying to install openldap and used several documents and package versions .
But every time I got CC PATH error and while I solved the CC issue , I got Barkley DB error . :wall:
Is there any perticular site from where I can install and configure... (1 Reply)
At work I'm been givin the task to move are backend servers from NIS to LDAP. We have mostly Solaris 10 servers, as well as a few Redhat servers. I am going to use openLDAP as the LDAP server. I'm looking for a good how to guide on setting up the openLDAP server. Most of the docs I have found seem... (0 Replies)
Hi, all:
I'm studying for the RHCE and have hit the section on configuring an OpenLDAP client. I'd like to practice this, but I can't get an OpenLDAP server set up. I followed the directions in RedHat's Deployment Guide, and it looks like the server is up and running, but I can't get the... (0 Replies)
hello
I have a P570 with 3 partitions.
These partitions are available, since 1 year. So there are a lot of users, files, etc, on these partition
I must now install an openldap with Debian to manage all these users.
But several pb:
on LDAP, we are 1 iud for user and one home directory, 1 gid... (0 Replies)
Hello!
I'm starting to panic here!
I'm trying to authorize Subversion (via apache) users at my company here via LDAP.
Sure everything works when just authorizing users with require valid-user
But! That is not what I'm looking for, I wish to Authorize by membership in specifik groups...
This... (0 Replies)