[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Queries regarding pam_groupdn.
- To: openldap-technical@openldap.org
- Subject: Queries regarding pam_groupdn.
- From: Meghanand Acharekar <vasco.debian@gmail.com>
- Date: Thu, 17 Feb 2011 14:42:22 +0530
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:from:date:message-id:subject:to :content-type; bh=4lThi9+smnvKfw3lBTYxOrWrjmagAN6Ln2Ze6m1zBD0=; b=fYEPrjjD9wnuQeRkJiv33R4K8uoik77ZBzeezSrLQRDpoqkHK5axTh9kMlmoMxQ/Oa gUNoHkov4oxH7LJwOzvhSxR3Ol04Wgh0QBxdakNyXFuxazjVmfTYq4NPQLeIDVWWbo1W so6AVsMUMZMPauEcpeLn2L8g7FMRGLgRKIGuI=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:from:date:message-id:subject:to:content-type; b=wRv7OTYkHcmhXMNbxXsRB6CPLcGFgTHnZBX0Vm2jbWWhIoMSve6mviIMvgnOJacxJJ gdAzxjQs/c5F0Kb/nY1o3phKpouHh5DBArNtDLWb8xPgWYcqzeuMI9iGBdUFPsuf9zy0 8l+QwwBxBMlZ4gORBDWcPlNg7RxMv/jxgsRrM=
Hi,
I'm using pam_groupdn for restricting access to some for my servers,
by defining user groups as follows.
/etc/ldap.conf (Redhat 5.5)
# Group to enforce membership of
pam_groupdn cn=group1,ou=Group,dc=example,dc=com
# Group member attribute
pam_member_attribute memberUid
This works only if the pam_member_attribute is in following format.
memberUid: uid=user1,ou=People,dc=example,dc=com
memberUid: uid=user2,ou=People,dc=example,dc=com
Simply memberUid: user1 is not working, is there any way to fix this.
Second, if a user which dose not belong to this group tries to login server,
access is denied by displaying following message.
You must be a memberUid of cn=group1,ou=Group,dc=example,dc=com to login.
Connection closed by x.x.x.x
Is it possible to change this message ?
Thanks & Regards,
Meghanand N. Acharekar