LDAP/Client/Linux: Unterschied zwischen den Versionen
Die Seite wurde neu angelegt: „= Configuring a System to Authenticate Using OpenLDAP = This section provides a brief overview of how to configure OpenLDAP user authentication. Unless you are an OpenLDAP expert, more documentation than is provided here is necessary. Refer to the references provided in [https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/5/html/deployment_guide/s1-ldap-additional-resources Section 28.9, “Additional Resources”] for more information…“ |
Keine Bearbeitungszusammenfassung |
||
| Zeile 1: | Zeile 1: | ||
= | '''topic''' kurze Beschreibung | ||
== Beschreibung == | |||
== Installation == | |||
== Anwendungen == | |||
=== Fehlerbehebung === | |||
== Syntax == | |||
=== Optionen === | |||
=== Parameter === | |||
=== Umgebungsvariablen === | |||
=== Exit-Status === | |||
== Konfiguration == | |||
=== Dateien === | |||
== Sicherheit == | |||
== Dokumentation == | |||
=== RFC === | |||
=== Man-Pages === | |||
=== Info-Pages === | |||
== Siehe auch == | |||
== Links == | |||
=== Projekt-Homepage === | |||
=== Weblinks === | |||
=== Einzelnachweise === | |||
<references /> | |||
== Testfragen == | |||
<div class="toccolours mw-collapsible mw-collapsed"> | |||
''Testfrage 1'' | |||
<div class="mw-collapsible-content">'''Antwort1'''</div> | |||
</div> | |||
<div class="toccolours mw-collapsible mw-collapsed"> | |||
''Testfrage 2'' | |||
<div class="mw-collapsible-content">'''Antwort2'''</div> | |||
</div> | |||
<div class="toccolours mw-collapsible mw-collapsed"> | |||
''Testfrage 3'' | |||
<div class="mw-collapsible-content">'''Antwort3'''</div> | |||
</div> | |||
<div class="toccolours mw-collapsible mw-collapsed"> | |||
''Testfrage 4'' | |||
<div class="mw-collapsible-content">'''Antwort4'''</div> | |||
</div> | |||
<div class="toccolours mw-collapsible mw-collapsed"> | |||
''Testfrage 5'' | |||
<div class="mw-collapsible-content">'''Antwort5'''</div> | |||
</div> | |||
[[Kategorie:Entwurf]] | |||
[[Kategorie:LDAP]] | |||
= TMP = | |||
== Configuring a System to Authenticate Using OpenLDAP == | |||
This section provides a brief overview of how to configure OpenLDAP user authentication. Unless you are an OpenLDAP expert, more documentation than is provided here is necessary. Refer to the references provided in [https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/5/html/deployment_guide/s1-ldap-additional-resources Section 28.9, “Additional Resources”] for more information. | |||
The <tt>openldap</tt>, <tt>openldap-clients</tt>, and <tt>nss_ldap</tt> packages need to be installed on all LDAP client machines. | ; Install the Necessary LDAP Packages. | ||
* First, make sure that the appropriate packages are installed on both the LDAP server and the LDAP client machines. The LDAP server needs the <tt>openldap-servers</tt> package. | |||
* The <tt>openldap</tt>, <tt>openldap-clients</tt>, and <tt>nss_ldap</tt> packages need to be installed on all LDAP client machines. | |||
Edit the Configuration Files. | ; Edit the Configuration Files. | ||
* On the server, edit the <tt>/etc/openldap/slapd.conf</tt> file on the LDAP server to make sure it matches the specifics of the organization. Refer to [https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/5/html/deployment_guide/s1-ldap-quickstart#s2-ldap-files-slapd-conf Section 28.6.1, “Editing /etc/openldap/slapd.conf”] for instructions about editing <tt>slapd.conf</tt>. | * On the server, edit the <tt>/etc/openldap/slapd.conf</tt> file on the LDAP server to make sure it matches the specifics of the organization. Refer to [https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/5/html/deployment_guide/s1-ldap-quickstart#s2-ldap-files-slapd-conf Section 28.6.1, “Editing /etc/openldap/slapd.conf”] for instructions about editing <tt>slapd.conf</tt>. | ||
* On the client machines, both <tt>/etc/ldap.conf</tt> and <tt>/etc/openldap/ldap.conf</tt> need to contain the proper server and search base information for the organization. <br/>To do this, run the graphical '''Authentication Configuration Tool''' (<tt>system-config-authentication</tt>) and select '''Enable LDAP Support''' under the '''User Information''' tab. <br/>It is also possible to edit these files by hand. | * On the client machines, both <tt>/etc/ldap.conf</tt> and <tt>/etc/openldap/ldap.conf</tt> need to contain the proper server and search base information for the organization. <br/>To do this, run the graphical '''Authentication Configuration Tool''' (<tt>system-config-authentication</tt>) and select '''Enable LDAP Support''' under the '''User Information''' tab. <br/>It is also possible to edit these files by hand. | ||
Version vom 18. September 2022, 10:20 Uhr
topic kurze Beschreibung
Beschreibung
Installation
Anwendungen
Fehlerbehebung
Syntax
Optionen
Parameter
Umgebungsvariablen
Exit-Status
Konfiguration
Dateien
Sicherheit
Dokumentation
RFC
Man-Pages
Info-Pages
Siehe auch
Links
Projekt-Homepage
Weblinks
Einzelnachweise
Testfragen
Testfrage 1
Antwort1
Testfrage 2
Antwort2
Testfrage 3
Antwort3
Testfrage 4
Antwort4
Testfrage 5
Antwort5
TMP
Configuring a System to Authenticate Using OpenLDAP
This section provides a brief overview of how to configure OpenLDAP user authentication. Unless you are an OpenLDAP expert, more documentation than is provided here is necessary. Refer to the references provided in Section 28.9, “Additional Resources” for more information.
- Install the Necessary LDAP Packages.
- First, make sure that the appropriate packages are installed on both the LDAP server and the LDAP client machines. The LDAP server needs the openldap-servers package.
- The openldap, openldap-clients, and nss_ldap packages need to be installed on all LDAP client machines.
- Edit the Configuration Files.
- On the server, edit the /etc/openldap/slapd.conf file on the LDAP server to make sure it matches the specifics of the organization. Refer to Section 28.6.1, “Editing /etc/openldap/slapd.conf” for instructions about editing slapd.conf.
- On the client machines, both /etc/ldap.conf and /etc/openldap/ldap.conf need to contain the proper server and search base information for the organization.
To do this, run the graphical Authentication Configuration Tool (system-config-authentication) and select Enable LDAP Support under the User Information tab.
It is also possible to edit these files by hand. - On the client machines, the /etc/nsswitch.conf must be edited to use LDAP.
To do this, run the Authentication Configuration Tool (system-config-authentication) and select Enable LDAP Support under the User Information tab.
If editing /etc/nsswitch.conf by hand, add ldap to the appropriate lines.
For example:
passwd: files ldap
shadow: files ldap
group: files ldap
PAM and LDAP
To have standard PAM-enabled applications use LDAP for authentication, run the Authentication Configuration Tool (system-config-authentication) and select Enable LDAP Support under the Authentication tab. For more about configuring PAM, refer to Section 48.4, “Pluggable Authentication Modules (PAM)” and the PAM man pages.