From owner-freebsd-security Mon Mar 4 5: 6:15 2002 Delivered-To: freebsd-security@freebsd.org Received: from mail.spc.org (insomnia.spc.org [195.224.94.183]) by hub.freebsd.org (Postfix) with SMTP id 0BAD237B41A for ; Mon, 4 Mar 2002 05:06:10 -0800 (PST) Received: (qmail 30227 invoked by uid 1031); 4 Mar 2002 12:55:09 -0000 Date: Mon, 4 Mar 2002 12:55:09 +0000 From: Bruce M Simpson To: Ted Wisniewski Cc: freebsd-security@freebsd.org Subject: Re: PAM & LDAP - Pointer anyone? Message-ID: <20020304125509.G2325@spc.org> Mail-Followup-To: Bruce M Simpson , Ted Wisniewski , freebsd-security@freebsd.org References: <200202270356.g1R3u5u25254@ness.plymouth.edu> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <200202270356.g1R3u5u25254@ness.plymouth.edu>; from ted@ness.plymouth.edu on Tue, Feb 26, 2002 at 10:56:05PM -0500 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Ted, On Tue, Feb 26, 2002 at 10:56:05PM -0500, Ted Wisniewski wrote: > I was wondering... Has anyone done this successfully? > I have FreeBSD 4.5, OpenLdap 2.0.23 & pam_ldap-137 > I have LDAP running, and configured where I can successfully Authenticate > FTP sessions. However, when I try to authenticate any other > service - no go. > I am specifically intersted in: > ssh, telnet, pop3, imap I have successfully managed to authenticate all of the above services against an LDAP directory on FreeBSD 4.5-RELEASE. Note that FreeBSD has no nss_ldap support, therefore you will require entries for each user in /etc/passwd. This is not necessarily the case for daemons which can obtain user information via LDAP directly, and which do not use the getpwent() et al set of libc interfaces. BMS To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message