[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Solaris 9 LDAP client issues

To: openldap-software@OpenLDAP.org
Subject: Re: Solaris 9 LDAP client issues
From: Scott Moorhouse <smoorhouse@ae-solutions.com>
Date: Wed, 21 Aug 2002 14:45:23 -0500
References: <Pine.GSO.4.44.0208201600590.544-100000@pula.istra.ypass.net>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.1b) Gecko/20020722

Igor Brezac wrote:

/var/ldap/ldap_client_file
NS_LDAP_FILE_VERSION= 2.0
NS_LDAP_SERVERS= my.ldap.server.ip
NS_LDAP_SEARCH_BASEDN= dc=mydomain,dc=com
NS_LDAP_SEARCH_SCOPE= sub
NS_LDAP_CREDENTIAL_LEVEL= proxy
NS_LDAP_SERVICE_SEARCH_DESC= automount:ou=AutomountMaps,dc=mydomain,dc=com


Here is your problem.  Add
NS_LDAP_AUTH= simple

default is none.  Restart nscd and ldap.client or reboot after you make
this change.

This was exactly the problem. For those who like to use the ldapclient tool to configure, you need -a authenticationMethod=simple to your command line. Once you said this it all made sense and I was even able to find the passage in the documentation where it says that the client defaults to "none" authentication (even if you have so diligently given it a proxyDN and a proxyPassword with which to use for authentication).

Now if there was just some good documentation on how to get it working with TLS... http://www.bolthole.com/solaris/LDAP.html is great but it only applies if you are going to use the padl.com nss library and pam module. Anybody gotten this working with Solaris 9's native tools?

Follow-Ups:
- Re: Solaris 9 LDAP client issues
  - From: Igor Brezac <igor@ipass.net>

References:
- Re: Solaris 9 LDAP client issues
  - From: Igor Brezac <igor@ipass.net>

Prev by Date: What groups am I in?
Next by Date: RE: make test fails: openldap 2.1.3 on RH 7.3
Index(es):
- Chronological
- Thread