Right now I think I have a preference to option c.
It is no more difficult than orchestrating a local user account using
the ansible user module with the added benefit that all of the users are
in only one database.
It also reduces everything that can go wrong that is ldap related to one
file
I figured out the problem. My krb5.keytab file somehow got corrupted on my
OpenLDAP server. I just needed to deleted it and recreate it. I got tipped off
to the problem when I started having login issues to the server as well.
On 09/18/2016 04:30 AM, Michael Ströder wrote:
FWIW: There's a
Thanks for the answer Michael!!!
My slapd.conf in attach.
I followed precisely the tip that you gave me at the link below:
http://www.openldap.org/doc/admin24/overlays.html#Reverse%20Group%20Membership%20Maintenance
When I run: *ldapsearch -LL -Y EXTERNAL -H ldapi:/// "(uid=test1)" -b
Right now I am trying to weigh my options for maintaining my POSIX
accounts on an OpenLDAP tree.
I learned today that ldap templates in ldapscripts really don't work, so
if I want to go on using ldapscripts, I would have to run ldapmodify
after every account is created to get the gecos configured
2016-09-18 11:29 GMT-04:00 Ralf Mattes :
>
> Am Sonntag, 18. September 2016 16:55 CEST, Clément OUDOT
> schrieb:
>
>
>>
>> Hi,
>>
>> you are right, we did not publish sources as Debian source packages
>> and we should do it.
>>
>> For the moment,
Am Sonntag, 18. September 2016 16:55 CEST, Clément OUDOT
schrieb:
>
> Hi,
>
> you are right, we did not publish sources as Debian source packages
> and we should do it.
>
> For the moment, you can get the source files here:
>
Am Sonntag, 18. September 2016 12:22 CEST, Michael Ströder
schrieb:
> Ralf Mattes wrote:
> >
> > Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder
> > schrieb:
> >
> >
> >> [1] http://ltb-project.org/wiki/documentation/openldap-deb
> >
> >
Am Sonntag, 18. September 2016 14:46 CEST, Harry Jede
schrieb:
> Ralf Mattes wrote:
> > Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder
> schrieb:
> > > [1] http://ltb-project.org/wiki/documentation/openldap-deb
> >
> > Thanks, but that
Joshua Schaeffer wrote:
> I've been using OpenLDAP and Kerberos for central authentication for a while
> now, but I have a couple programs that can't use GSSAPI directly and I want to
> setup SASL pass-through authentication to allow those services to use my
> Kerberos passwords, but I'm having
Ralf Mattes wrote:
>
> Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder
> schrieb:
>
>
>> [1] http://ltb-project.org/wiki/documentation/openldap-deb
>
> Thanks, but that repository dpesn't seem to have sources for jessie.
Not true:
Elias Pereira wrote:
> For a new group that I create, memberof is set automatically, ok?
slapo-memberof intercepts write operations to group entries and updates member
entries at that time.
Note that the member entry must exist of course for this to succeed.
Also note that you have to run
Am Freitag, 16. September 2016 10:15 CEST, Michael Ströder
schrieb:
> [1] http://ltb-project.org/wiki/documentation/openldap-deb
Thanks, but that repository dpesn't seem to have sources for jessie.
Looks like I need to go with the Debian Git version.
Cheers, Ralf
12 matches
Mail list logo