| [1] | Configure LDAP Client |
root@www:~#
aptitude -y install libnss-ldap libpam-ldap ldap-utils
(1) specify LDAP server's URI
(2) specify suffix
(3) specify LDAP version
(4) select the one you like. ( this example selects 'Yes' )
(5) select the one you like. ( this example selects 'No' )
(6) specify LDAP admin account's suffix
(7) specify password for LDAP admin account
root@www:~#
vi /etc/nsswitch.conf
# line 7: add
passwd:
compat
ldap
group:
compat
ldap
shadow:
compat
ldap
# line 19: change
netgroup:
ldap
root@www:~#
vi /etc/pam.d/common-password
# line 26: change ( remove 'use_authtok' )
password [success=1 user_unknown=ignore default=die] pam_ldap.so try_first_pass
root@www:~#
vi /etc/pam.d/common-session
# add at the last if needed ( create home directory automatically at first login )
session optional pam_mkhomedir.so skel=/etc/skel umask=077
sysv-rc-conf libnss-ldap on
root@www:~#
www login:
shutdown -r now
fedora
# user on LDAP
Password:
Welcome to Ubuntu 12.04 LTS (GNU/Linux 3.2.0-24-generic x86_64) * Documentation: https://help.ubuntu.com/ System information as of Wed May 9 22:06:20 JST 2012 System load: 0.0 Processes: 73 Usage of /: 7.0% of 17.68GB Users logged in: 0 Memory usage: 1% IP address for eth0: 10.0.0.31 Swap usage: 0% Graph this data and manage this system at https://landscape.canonical.com/ The programs included with the Ubuntu system are free software; the exact distribution terms for each program are described in the individual files in /usr/share/doc/*/copyright. Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by applicable law. Creating directory '/home/fedora'.fedora@www:~$
# logined
fedora@www:~$
# try to change LDAP password
Enter login(LDAP) password:
# current password
New password:
# new password
Re-enter new password:
# confirm
LDAP password information changed for fedora
passwd: password updated successfully
# just changed
Post a Comment