Date: Thu, 22 Dec 2005 18:23:46 -0500 From: Louis LeBlanc <FreeBSD@keyslapper.net> To: FreeBSD Questions <freebsd-questions@FreeBSD.org> Subject: openldap setup question Message-ID: <20051222232346.GA48463@keyslapper.net>
next in thread | raw e-mail | index | archive | help
--Kj7319i9nmIyA2yE Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable I know this is OT, but I'm trying to set up an LDAP server (openldap-2.2.29 client and server from ports) for user address books. I'm not interested in setting up LDAP authentication for the whole system. I'd prefer the ldap server use the regular login passwords, like the imap server does - the interface to change these is just easier to deal with for me. At this point, I have the server set up, and I've installed the java based ldapbrowser package (from ports, of course) and it seems to be able to add users. Unfortunately, the users added don't seem to be able to add or modify their own address books, and I have to have their password to add them - which I don't like. I don't want a network wide address book, like a company would use, I want my 3 users to be able to import their address books and have them available to themselves only - no anonymous connection, no access to any users book by other users. Ideally, I'd like to see bookmarks saved this way too, but I don't think most browsers can read them over LDAP. Oh well. So, can anyone tell me if this is a realistic application of the LDAP tools? If so, any pointers to the docs that actually describe these two features/uses? There are dozens of howtos and quick start guides out there, but I have yet to find one that addresses PAM authentication and user writeable address books. I know LDAP is a good tool for authentication, but I like having a single access route - namely the system login. This makes it much easier to be sure all users can change *all* their passwords in one go. Having separate login dbs for samba, sasl, shell, and ldap would make that quite a pain. TIA Lou --=20 Louis LeBlanc FreeBSD-at-keyslapper-DOT-net Fully Funded Hobbyist, KeySlapper Extrordinaire :) Please send off-list email to: leblanc at keyslapper d.t net Key fingerprint =3D C5E7 4762 F071 CE3B ED51 4FB8 AF85 A2FE 80C8 D9A2 diplomacy, n: Lying in state. --Kj7319i9nmIyA2yE Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFDqzWCr4Wi/oDI2aIRApcgAJ4roRnXXdB/pfU5fCptMpdyw1n4TgCggudW 5Gcm0jIYKej05KCd6wXa2/I= =qxTA -----END PGP SIGNATURE----- --Kj7319i9nmIyA2yE--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051222232346.GA48463>