LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Red Hat
Reload this Page ldap.conf: uri vs host
User Name
Password
Red Hat This forum is for the discussion of Red Hat Linux.

Notices


Reply
  Search this Thread
Old 03-25-2008, 11:36 AM   #1
yurii
LQ Newbie
 
Registered: Sep 2007
Posts: 8

Rep: Reputation: 0
ldap.conf: uri vs host

i've set up ldap authentication (authconfig(8)) in RHEL 3 (Red Hat Enterprise Linux WS release 3 (Taroon Update 5)).
the result ldap.conf is:
Code:
base                    dc=my,dc=net,dc=domain
ldap_version            3
scope                   sub

# sesision configuration
pam_password            md5
pam_filter              objectClass=posixAccount
pam_login_attribute     uid
pam_filter              !(uidNumber=0)
pam_member_attribute    memberUid

nss_base_passwd         dc=my,dc=net,dc=domain?sub?objectClass=posixAccount
nss_base_shadow         dc=my,dc=net,dc=domain?sub?objectClass=posixAccount
nss_base_group          dc=my,dc=net,dc=domain?sub?objectClass=posixGroup

ssl                     no
host                    ldap.my.net.domain
that works fine.
but when i'm using uri instead of host, i.e.:
Code:
uri                     ldap://ldap.my.net.domain/
i cannot authenticate neither via su(1), login(1) nor via ssh(1).

can anybody explain what is the difference between uri and host in ldap.conf?
Last edited by yurii; 03-25-2008 at 11:54 AM.
 
Old 03-25-2008, 09:00 PM   #2
gizza23
Member
 
Registered: Jun 2005
Location: Chicago, IL, USA
Distribution: Fedora Core, CentOS
Posts: 188

Rep: Reputation: 31
yurii,

I must tell you that I'm very happy I ran across your post. Although I can't help you with your problem, you helped me fix mine where I couldn't log in using ssh, su, or even chown and like commands. After I edited my ldap.conf file everything fell into place. Amazing!

Thanks!!!!
 
Old 03-25-2008, 09:11 PM   #3
gizza23
Member
 
Registered: Jun 2005
Location: Chicago, IL, USA
Distribution: Fedora Core, CentOS
Posts: 188

Rep: Reputation: 31
Oh, and I don't know if this will help in your case, but you may want to edit your /etc/hosts.allow to look like the following:

Quote:
localhost
127.0.0.1
I've also seen the following

Quote:
slapd:all
From what I understand, it allows hosts to access uri addresses like the one you're referencing above
 
Old 03-26-2008, 05:31 AM   #4
yurii
LQ Newbie
 
Registered: Sep 2007
Posts: 8

Original Poster
Rep: Reputation: 0
Quote:
Originally Posted by gizza23 View Post
Oh, and I don't know if this will help in your case, but you may want to edit your /etc/hosts.allow to look like the following:



I've also seen the following



From what I understand, it allows hosts to access uri addresses like the one you're referencing above
really do not understand why and how slapd:all relates to uri?
but glad to help you
 
Old 03-26-2008, 07:17 AM   #5
gizza23
Member
 
Registered: Jun 2005
Location: Chicago, IL, USA
Distribution: Fedora Core, CentOS
Posts: 188

Rep: Reputation: 31
Supposedly adding slapd:all to /etc/hosts.allow will allow hosts from any IP address to the uri address for slapd.

However, if you feel it won't help you then nevermind! Have a good one.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
nsswitch.conf vs host.conf question mokku Linux - Newbie 0 03-03-2008 10:18 AM
ldap.conf with multiple servers Neruocomp Linux - Server 0 11-02-2007 12:53 PM
LDAP & NSSwitch.conf matarodi Debian 0 09-11-2005 03:10 AM
/etc/hosts, /etc/resolve.conf and /etc/host.conf config probs below_average Linux - Networking 1 12-08-2004 10:07 PM
nsswitch.conf and host.conf differences peter72 Linux - Networking 4 10-23-2004 01:02 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Red Hat

All times are GMT -5. The time now is 12:27 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration