The Shed is going Social! Join us on FaceBook and Twitter and chime in on the conversation.
|
 |
|
Dev Shed Forums
> Databases
> LDAP Programming
|
Ldap client on linux, with LDAP server on solaris
Discuss Ldap client on linux, with LDAP server on solaris in the LDAP Programming forum on Dev Shed.
Ldap client on linux, with LDAP server on solaris LDAP Programming forum discussing Lightweight Directory Access Protocol information and techniques. LDAP is used to allow applications to access directory information from a server.
|
|
 |
|
|
|
|
Dev Shed Forums Sponsor:
|
|
|
June 21st, 2004, 10:47 PM
|
|
Registered User
|
|
Join Date: Jun 2004
Posts: 3
Time spent in forums: < 1 sec
Reputation Power: 0
|
|
Ldap client on linux, with LDAP server on solaris
hi,
I am working on LDAP. I installed the Sun One Directory Server 5.2 on sparc solaris9 machine.
I am trying to set a LDAP client on a linux machine with redhat9 installed on it by selecting the LDAP option in user authentication menu.It is not able to setup as an ldap client. The usernames set on LDAP server are not working on this machine.I used the baseDN as "dc=ldaptest, dc=com". My
server's address is 192.168.123.10. Authentication is none. The servers configuration are given below.
I configured the server with following command
/usr/lib/ldap/idsconfig is config ldap client
I set the folliwing attribute values.
1 Domain to serve : ldaptest.com
2 Base DN to setup : dc=ldaptest,dc=com
3 Profile name to create : default
4 Default Server List : 192.168.123.10
5 Preferred Server List :
6 Default Search Scope : one
7 Credential Level : anonymous
8 Authentication Method :
9 Enable Follow Referrals : FALSE
10 iDS Time Limit :
11 iDS Size Limit :
12 Enable crypt password storage : FALSE
13 Service Auth Method pam_ldap :
14 Service Auth Method keyserv :
15 Service Auth Method passwd-cmd:
16 Search Time Limit : 30
17 Profile Time to Live : 43200
18 Bind Limit : 10
19 Service Search Descriptors Menu
Now when i configure another sparc solaris machine as an LDAP client with following command, it works.
#ldapclient manual \
> -a credentialLevel=anonymous \
> -a authenticationMethod=none \
> -a defaultSearchBase=dc=laptest,dc=com \
> -a domainName=ldaptest.com \
> -a followReferrals=false \
> -a defaultServerList=192.168.123.10
If you can help me, it will be great. Thnx in anticipation.
nitin
apstc
|
June 28th, 2004, 09:16 PM
|
 |
Chris Larivee
|
|
Join Date: Sep 2003
Location: Littleton, CO
Posts: 72
Time spent in forums: 1 h 49 m 14 sec
Reputation Power: 10
|
|
|
I would try:
1. Adding the ldap entry for the RH system in to LDAP.
2. Editing the /etc/ldap.conf file with your specifications
3. Edit the /etc/nsswitch.conf file.
4. Restart or SIGHUP th nscd (thought the SIGHUP can foul users in session).
|
June 29th, 2004, 12:04 AM
|
|
Registered User
|
|
Join Date: Jun 2004
Posts: 3
Time spent in forums: < 1 sec
Reputation Power: 0
|
|
|
hi
>1. Adding the ldap entry for the RH system in to LDAP.
Can you explain this point in more details
>2. Editing the /etc/ldap.conf file with your specifications
I edited the /etc/ldap.conf file, with following specifications
host 192.168.123.10
base dc=ldaptest, dc=com
binddn cn=proxyagent,ou=profile,dc=ldaptest,dc=com
rootbinddn cn=Directory manager,dc=ldaptest,dc=com
port 389
scope one
timelimit 30
bind_timelimit 10
pam_password clear
ssl no
>3. Edit the /etc/nsswitch.conf file.
/etc/nsswitch.conf was already edited, when I selected LDAP with /etc/sysconfig/authconfig
>4. Restart or SIGHUP th nscd (thought the SIGHUP can foul users in session).
Rebooted the computer
I have changed the server settings to include proxy. Server settings are
1 Domain to serve : ldaptest.com
2 Base DN to setup : dc=ldaptest,dc=com
3 Profile name to create : default
4 Default Server List : 192.168.123.10
5 Preferred Server List :
6 Default Search Scope : one
7 Credential Level : proxy
8 Authentication Method : simple
9 Enable Follow Referrals : FALSE
10 iDS Time Limit :
11 iDS Size Limit :
12 Enable crypt password storage : FALSE
13 Service Auth Method pam_ldap : pam_ldap:simple
14 Service Auth Method keyserv : keyserv:simple
15 Service Auth Method passwd-cmd: passwd-cmd:simple
16 Search Time Limit : 30
17 Profile Time to Live : 43200
18 Bind Limit : 10
19 Service Search Descriptors Menu
My problem remains as such. I still cannot login with an account on ldap server on to the linux client
|
June 29th, 2004, 12:14 PM
|
|
Chris Larivee
|
|
Join Date: Sep 2003
Location: Littleton, CO
Posts: 72
Time spent in forums: 1 h 49 m 14 sec
Reputation Power: 10
|
|
|
To add the ldap entry I would just modify an existing ldap entry from another system - even a solaris system - to contain the linux machine's information.
One thing about your configuration you may want to change is the scope to sub - as you probably have the default DIT for LDAP authentication - meaning that your users are in the ou=People branch of dc=ldaptest,dc=com. A scope of one at a search base of dc=ldaptest,dc=com will not look deep enough in the tree to process authentication.
|
July 5th, 2004, 03:06 AM
|
|
Registered User
|
|
Join Date: Jun 2004
Posts: 3
Time spent in forums: < 1 sec
Reputation Power: 0
|
|
|
Hey
I changed the scope to sub, but it did not help
nitin
apstc
|
October 14th, 2004, 12:01 PM
|
|
Registered User
|
|
Join Date: Oct 2004
Posts: 1
Time spent in forums: < 1 sec
Reputation Power: 0
|
|
|
Follow up question on ldap
I have a similar question, i was hoping you can point me to a how-to or some direction to get me started, I am trying to get Linux bind to OpenLdap.
Linux bind to Sun One 5.2
if you know of a How-to or have an hints, I only need the client setup side.
The reason I am researching this option is to get rid of ypbind and use ldap client to bind.
Appreciate it,
Ihab
Quote: | Originally Posted by nitinjindal83 hi,
I am working on LDAP. I installed the Sun One Directory Server 5.2 on sparc solaris9 machine.
I am trying to set a LDAP client on a linux machine with redhat9 installed on it by selecting the LDAP option in user authentication menu.It is not able to setup as an ldap client. The usernames set on LDAP server are not working on this machine.I used the baseDN as "dc=ldaptest, dc=com". My
server's address is 192.168.123.10. Authentication is none. The servers configuration are given below.
I configured the server with following command
/usr/lib/ldap/idsconfig is config ldap client
I set the folliwing attribute values.
1 Domain to serve : ldaptest.com
2 Base DN to setup : dc=ldaptest,dc=com
3 Profile name to create : default
4 Default Server List : 192.168.123.10
5 Preferred Server List :
6 Default Search Scope : one
7 Credential Level : anonymous
8 Authentication Method :
9 Enable Follow Referrals : FALSE
10 iDS Time Limit :
11 iDS Size Limit :
12 Enable crypt password storage : FALSE
13 Service Auth Method pam_ldap :
14 Service Auth Method keyserv :
15 Service Auth Method passwd-cmd:
16 Search Time Limit : 30
17 Profile Time to Live : 43200
18 Bind Limit : 10
19 Service Search Descriptors Menu
Now when i configure another sparc solaris machine as an LDAP client with following command, it works.
#ldapclient manual \
> -a credentialLevel=anonymous \
> -a authenticationMethod=none \
> -a defaultSearchBase=dc=laptest,dc=com \
> -a domainName=ldaptest.com \
> -a followReferrals=false \
> -a defaultServerList=192.168.123.10
If you can help me, it will be great. Thnx in anticipation.
nitin
apstc |
|
Developer Shed Advertisers and Affiliates
| Thread Tools |
Search this Thread |
|
|
|
| Display Modes |
Rate This Thread |
 Linear Mode
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
