LDAP Client configuration for authentication?

Home Page Forums Network Management Linux and Networking LDAP Client configuration for authentication?

  • This topic is empty.
Viewing 3 posts - 16 through 18 (of 18 total)
  • Author
    Posts
  • #47332
    jhughes
    Member

    For whatever reason, I could never get rootbinddn to work until I logged into my zeroshell machine through SSH and manually added the line:

    rootbinddn cn=manager,dc=SPG

    There’s one already there, but it’s commented out by default. Then, I had to create a file /etc/ldap.secret and put my login password there, and chmod 600.

    Once complete, at least different LDAP clients successfully authenticate. Most of the ones I’ve been playing with–OpenFiler and Redmine, specifically–refuse to auth when connecting to an LDAP server without a password. I’m kind of new to this, so I could be completely wrong. 🙂

    #47333
    imported_fulvio
    Participant

    The rootbinddn is available in the file /etc/ldap.conf that just can affect the OpenLDAP clients and not the slapd daemon (OpenLDAP server). It is strange that modifying it in Zeroshell it fixes your problem.
    In any case, do not forget that Zeroshell cannot authenticate by using LDAP. The authentication is delegated to Kerberos5.

    Regards
    Fulvio

    #47334
    yannj
    Member

    @yum wrote:

    I’d suggest you using Fedora distribution. There is an utility called “authconfig-tui”, which works perfectly. You just have to specify “LDAP” for authorization, “Kerberos” for authentificaton, provide Zeroshell’s IP-address for both services, input LDAP base dn and Kerberos realm based on domain name. No need to edit configuration files by hand.

    Hi,

    I follow this instruction and now I can connect to my fedora 23 VM using zeroshell LDAP.

    When I enter the username and password, user information is retrieved into the ldap (as group and organization set in ZS are displayed in the Fedora login window), password is validated as session open, but user is automatically and immediatly disconnected.

    I check with local administator the user profile and I can see login and logout in information.

    I’m a newbie on ldap, and trying to implemente it for the first time. I check Fedora users and groups documentation, look etc/group and etc/passwd files, without success. I believe this is more a Fedora issue than a Zeroshell one, but I’m thinking you can help me ?

    Regards,

    Yann

Viewing 3 posts - 16 through 18 (of 18 total)
  • You must be logged in to reply to this topic.