From owner-freebsd-stable@FreeBSD.ORG Wed Sep 22 00:50:23 2004 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A218E16A4CE for ; Wed, 22 Sep 2004 00:50:23 +0000 (GMT) Received: from lists.frmug.org (frmug-gw.frmug.org [193.56.58.252]) by mx1.FreeBSD.org (Postfix) with ESMTP id DCE3643D1F for ; Wed, 22 Sep 2004 00:50:22 +0000 (GMT) (envelope-from olive@oban.frmug.org) Received: from localhost (localhost [127.0.0.1]) by lists.frmug.org (Postfix/TLS) with ESMTP id 42E4E20F64 for ; Wed, 22 Sep 2004 02:50:18 +0200 (CEST) Received: from lists.frmug.org ([127.0.0.1]) by localhost (frmug.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 31996-09 for ; Wed, 22 Sep 2004 02:50:17 +0200 (CEST) Received: by lists.frmug.org (Postfix/TLS, from userid 66) id BA70D20F5F; Wed, 22 Sep 2004 02:50:17 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by weirdos.oban.frmug.org (Postfix) with ESMTP id 916248C4B for ; Wed, 22 Sep 2004 02:47:39 +0200 (CEST) Received: by weirdos.oban.frmug.org (Postfix, from userid 1002) id 06ACA8C40; Wed, 22 Sep 2004 02:47:30 +0200 (CEST) Date: Wed, 22 Sep 2004 02:47:30 +0200 From: Olivier Tharan To: freebsd-stable@freebsd.org Message-ID: <20040922004730.GY86550@weirdos.oban.frmug.org> Mail-Followup-To: freebsd-stable@freebsd.org References: <790a9fff0409211157303bfe53@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline In-Reply-To: X-Attribution: Olive X-Virus-Scanned: by amavisd-new at frmug.org Subject: Re: nss_ldap - working or not, and how to? X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 22 Sep 2004 00:50:23 -0000 * jcaldwell@ymcastlouis.org (20040921 14:09): > Specifically what I'm looking for is just User/Group stuff. I'm setting up > a distributed Samba network - actually migrating from Novell Netware to > FreeBSD/Samba. It seems like the only sane way to approach that (with 22 > servers, scattered across 20 locations) is with nss_ldap. I'll check out > pam_ldap as well - thanks for the pointer. nss_ldap does just the uid/name lookup, pam_ldap does the authentication/authorization thing. If you only need user/group stuff, Bind does not need to be recompiled. I remember having installed the nss_ldap port, changed settings in /usr/local/etc/ldap.conf (or whatever nss_ldap installs), changed /etc/nsswitch.conf to use nss_ldap and that was about all. The documentation for nss_ldap is not always clear, but if you know your LDAP installation well, it is ok. -- olive