Steve Shockley wrote:
Prabhu Gurumurthy wrote:
How about using login_radius feature by modifying login.conf to add a
new radius profile and authenticate against a RADIUS server. You can
compile freeradius and have rad_ldap plugin on the RADIUS server to
authenticate against AD.
Will that still require creating entries in /etc/passwd? How would it
choose which login class the user's in?
Yes, it will require adding entries on /etc/passwd, in other words you
have to user useradd program, specifically -L option in useradd.
userinfo "username" will give you the login class of a particular user.
Remember you dont need to (re)set the password of the user if it is
under radius profile.
Prabhu