Red Hat This forum is for the discussion of Red Hat Linux.
Notices
Welcome to
LinuxQuestions.org , a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free.
Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please
contact us . If you need to reset your password,
click here .
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
#1
LQ Newbie
Registered: Sep 2007
Posts: 8
Rep:
ldap.conf: uri vs host
i've set up ldap authentication (authconfig(8)) in RHEL 3 (Red Hat Enterprise Linux WS release 3 (Taroon Update 5)).
the result ldap.conf is:
Code:
base dc=my,dc=net,dc=domain
ldap_version 3
scope sub
# sesision configuration
pam_password md5
pam_filter objectClass=posixAccount
pam_login_attribute uid
pam_filter !(uidNumber=0)
pam_member_attribute memberUid
nss_base_passwd dc=my,dc=net,dc=domain?sub?objectClass=posixAccount
nss_base_shadow dc=my,dc=net,dc=domain?sub?objectClass=posixAccount
nss_base_group dc=my,dc=net,dc=domain?sub?objectClass=posixGroup
ssl no
host ldap.my.net.domain
that works fine.
but when i'm using
uri instead of
host , i.e.:
Code:
uri ldap://ldap.my.net.domain/
i cannot authenticate neither via su(1), login(1) nor via ssh(1).
can anybody explain what is the difference between
uri and
host in ldap.conf?
Last edited by yurii; 03-25-2008 at 11:54 AM .
#2
Member
Registered: Jun 2005
Location: Chicago, IL, USA
Distribution: Fedora Core, CentOS
Posts: 188
Rep:
yurii,
#3
Member
Registered: Jun 2005
Location: Chicago, IL, USA
Distribution: Fedora Core, CentOS
Posts: 188
Rep:
Oh, and I don't know if this will help in your case, but you may want to edit your /etc/hosts.allow to look like the following:
I've also seen the following
From what I understand, it allows hosts to access uri addresses like the one you're referencing above
#4
LQ Newbie
Registered: Sep 2007
Posts: 8
Original Poster
Rep:
Quote:
Originally Posted by
gizza23
Oh, and I don't know if this will help in your case, but you may want to edit your /etc/hosts.allow to look like the following:
really do not understand why and how
slapd:all relates to uri?
but glad to help you
#5
Member
Registered: Jun 2005
Location: Chicago, IL, USA
Distribution: Fedora Core, CentOS
Posts: 188
Rep:
Supposedly adding slapd:all to /etc/hosts.allow will allow hosts from any IP address to the uri address for slapd.
Thread Tools
Search this Thread
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
All times are GMT -5. The time now is 09:11 AM .
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know .
