[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Kerberos+LDAP and pam_filter

On Sun, Oct 07, 2007 at 11:00:54PM +0200, Maximilian Wilhelm wrote:
> I could not find anyhting about pam_* in 'man libnss-ldap.conf'
> Are there options from the configuration of 'libpam-ldap'?
I think I may have duplicated that setting from the pam_ldap.conf.

> I would try this:
> uri ldaps://santiago.connexer.com/
> base dc=connexer,dc=com
> ldap_version 3
> nss_base_passwd dc=connexer,dc=com?sub?|(host=miami)(host=\*)
> If you have a flat sub-tree with all people, you should IMO use
>   nss_base_passwd <subtree>,dc=connexer,dc=com?one?|(host=miami)(host=\*)
> to speed up the lookups
Yes.  The accounts are in ou=Accounts.


Roberto C. Sánchez

Attachment: signature.asc
Description: Digital signature

Reply to: