[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Etch and NSS with LDAP

On Wednesday, 04.10.2006 at 10:23 -0400, Grok Mogger wrote:

> Hey, thanks for your help.  I'm still not totally clear on one thing
> though.
> I am trying to set up a new Debian etch box.  I want to handle
> authentication (yes, for ssh) via LDAP instead of the regular
> /etc/passwd and shadow files.  I am under the impression that I cannot
> do that without the libnss-ldap package.  Am I right about that?  I've
> never set this up before, so I'm not sure.

You need libpam-ldap too.  There is a reasonably good HOWTO guide at
http://www.moduli.net/pages/sarge-ldap-auth-howto - take a look there.

Basically, the NSS package allows the local system to tie up local UID
and GID with the right 'real' users in LDAP; the PAM package handles the
authentication side of things.

Please don't CC me on list messages!
Dave Ewart - davee@sungate.co.uk - jabber: davee@jabber.org
All email from me is now digitally signed, key from http://www.sungate.co.uk/
Fingerprint: AEC5 9360 0A35 7F66 66E9 82E4 9E10 6769 CD28 DA92

Attachment: signature.asc
Description: Digital signature

Reply to: