[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: trying to understand log output and authentication

To: "Brian K. Jones" <jonesy@CS.Princeton.EDU>
Subject: Re: trying to understand log output and authentication
From: Tony Earnshaw <tonni@billy.demon.nl>
Date: 06 Feb 2003 14:09:29 +0100
Cc: ldap list <openldap-software@OpenLDAP.org>
In-reply-to: <1044457757.3709.65.camel@newhotness>
Organization:
References: <1044457757.3709.65.camel@newhotness>

ons, 2003-02-05 kl. 16:09 skrev Brian K. Jones:

> To a newbie, it looks like fishhead itself is first binding to the LDAP
> server, using credentials from ldap.secret (how do I get to where I
> *don't* need this file?) and info from /etc/ldap.conf.  Only then can it
> send the information to authenticate the user.  Is this much correct? 
> I'm having trouble finding docs on what's happening in this process. 
> All I see is 'make sure pam_ldap and nss_ldap are installed, do this,
> and it should work'.

I have the same with pam_ldap. 'Spose everybody has. That's what clients
that use /etc/ldap.conf to bind with do. OTOH, clients such as my smtp
server and Evolution (that don't use /etc/ldap.conf binds) bind with a
DN/password combination that only makes one proxy or user bind
necessary.

> This info alone is great until something *doesn't* work.

Make sure it always works, then :-)

Best,

Tony
 
-- 

Tony Earnshaw

When all's said and done ...
there's nothing left to say or do.

e-post:		tonni@billy.demon.nl
www:		http://www.billy.demon.nl

References:
- trying to understand log output and authentication
  - From: "Brian K. Jones" <jonesy@CS.Princeton.EDU>

Prev by Date: Re: PAM LDAP FTP (OT ??)
Next by Date: Re: A dumb question, but my brain is stuck :)
Index(es):
- Chronological
- Thread