From owner-freebsd-questions  Wed Jun 20 21:20:54 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from shumai.marcuscom.com (rdu26-228-058.nc.rr.com [66.26.228.58])
	by hub.freebsd.org (Postfix) with ESMTP id 6818837B407
	for <freebsd-questions@FreeBSD.ORG>; Wed, 20 Jun 2001 21:20:51 -0700 (PDT)
	(envelope-from marcus@marcuscom.com)
Received: from localhost (marcus@localhost)
	by shumai.marcuscom.com (8.11.3/8.11.3) with ESMTP id f5L4JuJ26419;
	Thu, 21 Jun 2001 00:19:56 -0400 (EDT)
	(envelope-from marcus@marcuscom.com)
X-Authentication-Warning: shumai.marcuscom.com: marcus owned process doing -bs
Date: Thu, 21 Jun 2001 00:19:56 -0400 (EDT)
From: Joe Clarke <marcus@marcuscom.com>
To: Jim Durham <durham@w2xo.pgh.pa.us>
Cc: Jaime <jaime@snowmoon.com>, <freebsd-questions@FreeBSD.ORG>
Subject: Re: LDAP authentication/serving
In-Reply-To: <Pine.BSF.4.21.0106202327120.10142-100000@shazam.int>
Message-ID: <20010621001918.R4019-100000@shumai.marcuscom.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Once you setup your LDAP server, you can use the pam_ldap module in
/usr/ports/security/pam_ldap to do authentication off of LDAPv2 or v3.

Joe Clarke

On Wed, 20 Jun 2001, Jim Durham wrote:

>
> > 	Can anyone tell me (if RTFM, please point to an M to R ;) ) how to
> > set up FreeBSD to either:
> > A) Act as an LDAP server
> > 	or
> > B) Authenticate off of another server's LDAP data.
> >
> > 	The details are rather simple.  I'm about to start using MacOS X
> > Server for workstation authentication at my job.  It allows authentication
> > to be pulled from an LDAP server if it follows a certain pattern (which I
> > have documentation for) or to serve its own data out via LDAP.
> >
> > 	I've never been able to get LDAP running properly off of any
> > server, so I really don't know what steps to take first or how to
> > structure things or even what to expect.  So any advise on how to get
> > started would be appreciated.  Also, any advise on which way to control
> > things (serve passwords from MacOS X Server or FreeBSD) would be
> > appreciated.
> >
>
> Since no one answered you, I'll say that I have LDAP running on
> 4.1-RELEASE using openldap from openldap.org. I am using it for a company
> address book and contact manager, not auth, but it works well. It's in
> ports (/usr/ports/net/openldap*).
>
> You will need to understand how schemas work and define one that is
> compliant with whatever Macs want for password authorization. I'm not
> doing that, so I can't help much except to say that openldap runs just
> fine on FreeBSD! I have beat my way through attributes and schemas and all
> that so perhaps I could answer some questions.
>
> -Jim Durham
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message