Mike Leone on 26 Mar 2010 14:49:43 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] using OpenLDAP with Active Directory

Jason Stelzer had this to say:
> ldapsearch is usually part of the openldap client package. The
> /etc/ldap.conf is usually used by the nss_ldap package (the nss/pam
> service). They're only  related to each other in name. One is a
> userspace tool to interact with ldap, the other is system level.

The second one is what I want - the system level nss_ldap style lookup. 
I want to be able to login and have the authentication happen against my 
AD server. Or fail back to a local-only user, if that fails ...

> Now that you know what to use to bind, try hooking up the nss_ldap
> settings to your ldap.conf and logging in. You'll need to turn up
> logging and watch your syslog to debug things.

How do you turn up the logging for the nss_ldap? I don't see any way to 
do that. I suppose I test that by trying to log in using an AD-only 
account ..

Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug