Travel

Categories
«  
  »

Configure Solaris 10’s native LDAP client to authenticate to OpenLDAP Server

1. Solaris’ LDAP authentication requires shadowAccount object class be bound to an account for lookups to succeed.
Edit /usr/share/openldap/migration/migrate_passwd.pl to add the shadowAccount object class below posixAccount

2. Run ldapclient command on the Solaris with the parameters as specified as here

3. Remove /etc/pam.conf with this file

4. edit /etc/nsswitch.conf.ldap, change :

hosts:      ldap [NOTFOUND=return] files

to

hosts:      files dns

4. ldapclient list

5. ldaplist -vl passwd

6. getent passwd

October 14th, 2012 | Tags: | Category: 電腦

1 comment to Configure Solaris 10’s native LDAP client to authenticate to OpenLDAP Server

  • Jeffrey
    October 22, 2014 at 12:32 pm

    Hi Peter,

    Do you know or do you know anyone able to ldapclient solaris 10 to openldap using tls:simple
    serviceAuthenticationMethod=pam_ldap:simple

    Regards

    Jeff

Leave a Reply

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>