SAC:Setup LDAP Authentication
Revision as of 03:58, 27 August 2007 by Neteler (talk | contribs) (→Pointers to good LDAP information)
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.
Setting up FC4 to use LDAP for login authentication
Run:
sudo authconfig
Enabled LDAP on first screen like this:
│ User Information Authentication │
│ [ ] Cache Information [*] Use MD5 Passwords │
│ [ ] Use Hesiod [*] Use Shadow Passwords │
│ [*] Use LDAP [*] Use LDAP Authentication │
│ [ ] Use NIS [ ] Use Kerberos │
│ [ ] Use Winbind [ ] Use SMB Authentication │
│ [ ] Use Winbind Authentication │
│ [ ] Local authorization is sufficient │
Enter LDAP Settings like this:
│ [ ] Use TLS │
│ Server: ldap.telascience.org____________________ │
│ Base DN: dc=telascience,dc=org___________________ │
Edit /etc/ldap.conf and change pam_groupdn line to read:
pam_groupdn cn=Shell,ou=Groups,dc=telascience,dc=org
(or possibly cn=Admin for medium security systems)
Setting up SVN server to use LDAP authentication
Setting up Bugzilla to use LDAP Authentication
Details at http://www.bugzilla.org/docs/tip/html/extraconfig.html#bzldap
It seems that the LDAP entries require an email attribute that bugzilla can use for sending email, but generally speaking this seems like a well supported option for bugzilla. I do wonder if there is an option for users not in LDAP to create accounts in bugzilla for the purpose of submitting bugs. I think this is desirable or even necessary!
sudo
http://www.courtesan.com/sudo/readme_ldap.html
Pointers to good LDAP information
- http://ldots.org/ldap - moderately helpful.