Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Ultimately, I would like to have my user database in LDAP, having Cyrus applications (like cyrus imap and postfix) authenticatie against the ldap server using the saslauthd.
Now with Fedora having cyrus tools and applications per default, I would have thought the implementation would be going smoother than before, but not yet..
It's been a pain in my butt to have this all done, and until now without luck. have read lots of howtos, but they don't fit 100% and somehow I am missing items here and there...
Have you been working on the same and can you help me out?
The problem I have is decisions...
My idea is to have cyrus-imap and postfix authenticate against saslauthd, which in turn uses pam.
pam should be using the ldap server in the system-auth service. this way all my pam services authenticate the users against ldap (no matter ssh, login, imap, whatever).
Is this right? Is this workable?. It would be great to be able to add users in the ldap server not having to add them to the local passwd/shadow files as well.
If any additional info is needed for you to answer but you feel you can help me, please let me know what info to provide to get my issue resolved..
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
