IDependOn-Set: 1
IDependOn-Set: 14
IDependOn-Set: 3
IDependOn-Set: 45
IDependOn-Set: 46
IDependOn-Set: 47
IDependOn-Set: 8
LastModifiedSecs: 965093171
Parent: 14
SequenceNumber: 3
Title: Configuring the clients
Part: 0
Author-Set: sauer@cloudmaster.com
LastModifiedSecs: 961652598
Type: html
Lines: 8
You need to set up the general configuration for LDAP and make sure you can find stuff first.  Set up the ldap.conf file you configured pam_ldap and nss_ldap to use (strings /lib/security/pam_ldap.so | grep ldap.conf)
<PRE>
BASE    dc=cloudmaster,dc=com
HOST    ldap.cloudmaster.com
</PRE>
Make SURE there isn't a trailing space in the BASE!  That wil drive you crazy trying to debug...  Make sure it's that way on the server too.  You can also set some extra stuff in there, look at the docs that came with pam_ldap and nss_ldap for explanations.  I'm too lazy to retype that stuff.
<HR>
You need to set up /etc/nsswitch.conf and /etc/pam.d too.  See the appropriate sections of this FAQ for hints.
EndPart: 0
Part: 1
Author-Set: sauer@cloudmaster.com
HideAttributions: 1
LastModifiedSecs: 965093171
Type: html
Lines: 1
Note that if you don't have files <I>first</I> in the nsswitch.conf file, you should use an IP for the <strong>HOST</strong> line here.  An IP is better also because it doesn't require a DNS query every time your client tries to access the LDAP server.  Unless you're changing DNS entries and are too lazy to update this file when you change a machine's IP, you should probably use an IP address there.
EndPart: 1