SAC:Setup LDAP Authentication
Revision as of 03:58, 27 August 2007 by Neteler (talk | contribs) (→Pointers to good LDAP information)
Setting up FC4 to use LDAP for login authentication
Run:
sudo authconfig
Enabled LDAP on first screen like this:
│ User Information Authentication │ │ [ ] Cache Information [*] Use MD5 Passwords │ │ [ ] Use Hesiod [*] Use Shadow Passwords │ │ [*] Use LDAP [*] Use LDAP Authentication │ │ [ ] Use NIS [ ] Use Kerberos │ │ [ ] Use Winbind [ ] Use SMB Authentication │ │ [ ] Use Winbind Authentication │ │ [ ] Local authorization is sufficient │
Enter LDAP Settings like this:
│ [ ] Use TLS │ │ Server: ldap.telascience.org____________________ │ │ Base DN: dc=telascience,dc=org___________________ │
Edit /etc/ldap.conf and change pam_groupdn line to read:
pam_groupdn cn=Shell,ou=Groups,dc=telascience,dc=org
(or possibly cn=Admin for medium security systems)
Setting up SVN server to use LDAP authentication
Setting up Bugzilla to use LDAP Authentication
Details at http://www.bugzilla.org/docs/tip/html/extraconfig.html#bzldap
It seems that the LDAP entries require an email attribute that bugzilla can use for sending email, but generally speaking this seems like a well supported option for bugzilla. I do wonder if there is an option for users not in LDAP to create accounts in bugzilla for the purpose of submitting bugs. I think this is desirable or even necessary!
sudo
http://www.courtesan.com/sudo/readme_ldap.html
Pointers to good LDAP information
- http://ldots.org/ldap - moderately helpful.