(Answer) (Category) Products of Aardvarks With Chisels : (Category) Linux : (Category) LDAP stuff : (Category) HOW-TO :
Configuring the clients
You need to set up the general configuration for LDAP and make sure you can find stuff first. Set up the ldap.conf file you configured pam_ldap and nss_ldap to use (strings /lib/security/pam_ldap.so | grep ldap.conf) 
BASE    dc=cloudmaster,dc=com
HOST    ldap.cloudmaster.com
Make SURE there isn't a trailing space in the BASE! That wil drive you crazy trying to debug... Make sure it's that way on the server too. You can also set some extra stuff in there, look at the docs that came with pam_ldap and nss_ldap for explanations. I'm too lazy to retype that stuff.
You need to set up /etc/nsswitch.conf and /etc/pam.d too. See the appropriate sections of this FAQ for hints.
Note that if you don't have files first in the nsswitch.conf file, you should use an IP for the HOST line here. An IP is better also because it doesn't require a DNS query every time your client tries to access the LDAP server. Unless you're changing DNS entries and are too lazy to update this file when you change a machine's IP, you should probably use an IP address there.
[Append to This Answer]
2000-Jul-31 8:26pm
Previous: (Answer) Configuring the server
Next: (Answer) /etc/nsswitch.conf
This document is: http://www.cloudmaster.com/~sauer/projects/index.cgi?file=46
[Search] [Appearance]
This is a Faq-O-Matic 2.719.
This FAQ administered by sauer@cloudmaster.com