Table of Contents
Advertisement
If editing
/etc/nsswitch.conf
For example:
passwd: files ldap shadow: files ldap group: files ldap
7.1. PAM and LDAP
To have standard PAM-enabled applications use LDAP for authentication, run the
Authentication Configuration Tool (
LDAP Support under the the Authentication tab. For more about configuring PAM, refer to
Chapter 16, Pluggable Authentication Modules (PAM)
7.2. Migrating Old Authentication Information to LDAP Format
The
/usr/share/openldap/migration/
migrating authentication information into an LDAP format.
Note
Perl must be installed on the system to use these scripts.
First, modify the
migrate_common.ph
domain should be changed from its default value to something like:
$DEFAULT_MAIL_DOMAIN = "example";
The default base should also be changed, to something like:
$DEFAULT_BASE = "dc=example,dc=com";
The job of migrating a user database into a format that is LDAP readable falls to a group of
migration scripts installed in the same directory. Using
decide which script to run to migrate the user database.
Run the appropriate script based on the existing name service.
The
and the
README
migration-tools.txt
directory provide more details on how to migrate the information.
by hand, add
to the appropriate lines.
ldap
system-config-authentication
and the PAM man pages.
directory contains a set of shell and Perl scripts for
file so that it reflects the correct domain. The default DNS
Table 13.1, "LDAP Migration
files in the
/usr/share/openldap/migration/
PAM and LDAP
) and select Enable
Scripts",
245
Advertisement
Table of Contents
