Date: Tue, 20 May 2003 10:17:15 +0100 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Gunnar Flygt <flygt@sr.se>, FreeBSD Questions <freebsd-questions@FreeBSD.org> Subject: Re: Where do I find information how to verify FBSD login via LDAP Message-ID: <20030520091715.GA84136@happy-idiot-talk.infracaninophile.co.uk> In-Reply-To: <20030520085515.GA2696@sr.se> References: <20030520085515.GA2696@sr.se>
next in thread | previous in thread | raw e-mail | index | archive | help
--UlVJffcvxoiEqYs2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, May 20, 2003 at 10:55:15AM +0200, Gunnar Flygt wrote: > It's all in the Subject. I want to verify users to an external > FTP server by using OpenLDAP. Where do I find documentation, > or HowTo's? >=20 > I plan to have the LDAP server within our Company network, and the > FTP server on a DMZ in the firewall >=20 > All as secure as possible You're going to need certainly the pam_ldap and maybe the nss_ldap functionality on the FTP server. The Pluggable Authentication Module pam_ldap can be installed via the security/pam_ldap port, and I believe it works well on recent FreeBSD 4.x. That's possibly all you need to authenticate users via LDAP. However, you might also need to use the Name Service Switch nss_ldap module: this depends on the introduction of the name service switch functionality, which is, as far as I know, still an on-going work in 5-CURRENT. According to the Makefile for the net/nss_ldap port: .if ${OSVERSION} < 500112 IGNORE=3D NSS modules only supported on FreeBSD 5.1 or later .endif As for HOWTOs --- the documentation at http://www.openldap.org/ is pretty good, and there's some good stuff accessible from http://www.padl.com/Contents/Documentation.html (PADL are the authors of the pam_ldap and nss_ldap modules). A lot of the Linux documentation has much that is relevant to FreeBSD. The O'Reilly "LDAP System Administration" nutshell book is also bang up to date (published March 2003) and well worth reading. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK --UlVJffcvxoiEqYs2 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE+yfKbdtESqEQa7a0RAiTAAKCFFAoQaoqrbbYye4mSK7vn1FPkIgCeORhe aaojw1UNoRaarnWUF3slbWA= =ztYE -----END PGP SIGNATURE----- --UlVJffcvxoiEqYs2--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030520091715.GA84136>