Hi Michael,
I think the LDAP in current form should solve my purpose.
Currently I have client and server on the same machine. I have created one user in LDAP namely asimananda and I am able to login to the server by the same too. But in the auth.log, it shows some error....is it normal ?
If "su - asimananda" is done from root : * *------------------------------------------
*PAM unable to dlopen(/lib/security/pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory PAM adding faulty module: /lib/security/pam_foreground.so pam_ldap: ldap_simple_bind Can't contact LDAP server pam_ldap: reconnecting to LDAP server... pam_ldap: ldap_simple_bind Can't contact LDAP server Successful su for asimananda by root + pts/3 root:asimananda pam_unix(su:session): session opened for user asimananda by root(uid=0)*
------------------------------------------
If new session is opened to log in as asimananda :
------------------------------------------
*PAM unable to dlopen(/lib/security/pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory PAM adding faulty module: /lib/security/pam_foreground.so pam_ldap: ldap_simple_bind Can't contact LDAP server pam_ldap: reconnecting to LDAP server... pam_ldap: ldap_simple_bind Can't contact LDAP server pam_ldap: ldap_simple_bind Can't contact LDAP server pam_ldap: reconnecting to LDAP server... pam_ldap: ldap_simple_bind Can't contact LDAP server Accepted password for asimananda from 172.21.141.50 port 4484 ssh2 pam_unix(ssh:session): session opened for user asimananda by (uid=0)*
------------------------------------------
Thanks for the reply.
-Asimananda
2009/7/20 Michael Ströder michael@stroeder.com
Asimananda Mohanty wrote:
But is there any way that I make the password stuff working as well.
Yes, but what exactly do you want to do? There are so many options. Simplest thing and most commonly used is simple bind.
But you should read some docs:
http://www.openldap.org/doc/admin24/security.html#Authentication%20Methods http://www.openldap.org/faq/data/cache/419.html
Ciao, Michael.
-- Michael Ströder E-Mail: michael@stroeder.com http://www.stroeder.com