Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have experience with many systems, but new to Linux.
System: Centos
Daemon: OpenLDAP/phpLDAP
I would like to use Open LDAP as a resource for several websites for related organizations, but keep the security principals separate for the OS. I have found the documentation does not directly point to something (web searches were also ambiguous).
1. Has/Does anyone else do this?
2. Is there a reference?
3. Can you provide steps?
My apology in advance if this is a blatantly simple and obvious line of questions.
I have not done this, but the question interests me.
Certainly an application can do authentication independent of the operating system, in fact many applications clearly DO: certain ftp and web servers can use SQL back ends, why not LDAP.
If we can find the setup for that application to use LDAP, it should work.
The OS uses PAM, and if we no NOT integrate LDAP authentication into PAM the OS will NOT use LDAP.
This then leads me to think that the place to research this (after google, natch!) will be in the documentation for your web server. Which web server are you using?
(Not II I hope! Something like Apache HTTPD, or possibly NGINX, Monkey, etc.)
Thanks for your insight. I think that not coupling the slapd daemon to the PAM is exactly the trick. (I had no idea what to call the local security access daemon).
Adding nginx on top was a recommendation made to me (the travesty of being a nEWb).
After reading up on CentOS PAM, I have found what I thought might be there - the step during installation/configuration that directs the OS to authenticate - ez, just don't do it. Then the LDAP is stand alone. From there, configuring listening for the daemon to service sites and a small local (web) interface for management should be somewhat simple, yes?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.