Configure LDAP Client
2012/05/09 |
[1] | Configure LDAP Client |
root@www:~#
aptitude -y install libnss-ldap libpam-ldap ldap-utils (1) specify LDAP server's URI (2) specify suffix (3) specify LDAP version (4) select the one you like. ( this example selects 'Yes' ) (5) select the one you like. ( this example selects 'No' ) (6) specify LDAP admin account's suffix (7) specify password for LDAP admin account
root@www:~#
vi /etc/nsswitch.conf # line 7: add passwd: compat ldap group: compat ldap shadow: compat
ldap # line 19: change netgroup: ldap
root@www:~#
vi /etc/pam.d/common-password # line 26: change ( remove 'use_authtok' ) password [success=1 user_unknown=ignore default=die] pam_ldap.so try_first_pass
root@www:~#
vi /etc/pam.d/common-session # add at the last if needed ( create home directory automatically at first login )
session optional pam_mkhomedir.so skel=/etc/skel umask=077
sysv-rc-conf libnss-ldap on
root@www:~#
www login: shutdown -r now fedora # user on LDAP Password: Welcome to Ubuntu 12.04 LTS (GNU/Linux 3.2.0-24-generic x86_64) * Documentation: https://help.ubuntu.com/ System information as of Wed May 9 22:06:20 JST 2012 System load: 0.0 Processes: 73 Usage of /: 7.0% of 17.68GB Users logged in: 0 Memory usage: 1% IP address for eth0: 10.0.0.31 Swap usage: 0% Graph this data and manage this system at https://landscape.canonical.com/ The programs included with the Ubuntu system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Creating directory '/home/fedora'.fedora@www:~$ # logined fedora@www:~$ # try to change LDAP password Enter login(LDAP) password: # current password New password: # new password Re-enter new password: # confirm LDAP password information changed for fedora passwd: password updated successfully # just changed |