[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: migrating passwd from NIS to LDAP
Tony Earnshaw <tonye@billy.demon.nl> writes:
> No secret. Short as possible, from now on this is stuff for the Padl
> pamldap list, so all further questions there ;)
Hopefully the following question is back on topic...
> 1: To login via ssh a user has to have a login shell and a home
> directory. More important, the user has to have a UID and a GID known to
> the system.
>
> 2: To use something like Mozilla's LDAP client he doesn't.
>
> So, add objectClass'es posixAccount and posixGroup to your users and
> make sure they have at least a UID and UIDNR (corresponding to their
> /etc/passwd UID and UIDNR), a GIDNR (/etc/passwd GID and /etc/group GID)
> a CN, and if you want them to be able to log in, a login directory and a
> login shell.
Aha!
So: how do I get slapd to tell me "I couldn't authenticate you because
you don't have a [UID/UIDNR/GID/etc.]" rather than "TLS: can't
accept."?
Thanks for all the answers so far!
-chris