OpenSUSE Network :: Add User From LDAP?
Jan 1, 2011how to add user to my opensuse 11.3 box from a ldap server ? I used useradd but can't log in with the ldap credentials .
View 1 Replies
ADVERTISEMENT
OpenSUSE Network :: Setup A LDAP Server Using The Yast-LDAP Server Configuration Tool
May 31, 2010we have a weird problem with our opensuse 11.2 server installation.
We want to set up a LDAP Server using the Yast-LDAP Server configuriation tool.
This indeed already worked weeks ago until....this week.
Maybe some updates??!
I do not know what happend exactly. The server just does not want to start again and throws following error:
Starting ldap-serverstartproc: exit status of parent of /usr/lib/openldap/slapd: 1 failed
This happend after a little check of the configuration, but without a change, with Yast. Google delivered only "reinstall your box"-answers.
So.. i did that. And now the "mystical" part: The SAME ERROR occurs with a fresh vanilla system with a brand new and simple configuration (certificats, database, pw...the first Yast config dialog...). I did not change the way i set it up.
I remember, when i did this the first time with 11.2 on that machine, when no problems occured...everything was running out of the box (except the "use commen server certificate" option...).
CentOS 5 Networking :: LDAP User Can't Login Remotely By SSH On LDAP/Samba PDC?
Sep 8, 2009I installed CentOS 5.2 and then run yum update. I configured this server as LDAP/Samba primary domain controller. LDAP seems to be OK and for testing I am able to create users with:smbldap-tools useradd -am usernameI can ssh into the server as root and also as a Linux user which was locally created in the server. But ssh into the server as LDAP user fails (from a Fedora 11 machine) with "Permission denied, please try again", prompting again for password.Some data:
# rpm -qa | grep ldap
python-ldap-2.2.0-2.1
php-ldap-5.1.6-23.2.el5_3
[code]....
Server :: Apache Authentication: Allow LDAP Group OR User Named Guest But Not All LDAP Users?
May 25, 2011I am using RackMonkey to map out my lab. Unfortunately, due to RM limitations, every user who accesses the site has write access UNLESS they are logged in as a user named "guest". I currently have Apache allowing only the users (sysadmins) in an LDAP group access to RM, but I would like to allow read-only access for other users as well.I found mod_authn_anon, but I am having trouble combining the two authentication methods. I am using Apache 2.2.18 (compiled myself) on SLES 11.1.
This is the common part:
Code:
AuthType Basic
AuthBasicProvider ldap anon
Order allow,deny
Allow from all
This part by itself works for the LDAP authentication:
Code:
AuthName "System Admins"
AuthLDAPURL "ldaps://example.com/ou=ldap,o=example.com?mail" SSL
Require ldap-group cn=SysAdmins,ou=memberlist,ou=groups,o=example.com
This part works by itself for guest access:
Code:
Anonymous guest
Anonymous_VerifyEmail Off
Anonymous_MustGiveEmail Off
Anonymous_LogEmail on
Require valid-user
But if I have both of the previous blocks enabled at once, then guest access does not work. If I throw in a "Satisfy any", then I am not prompted for a username at all. How can I allow access to this LDAP group and to a user named "guest", but not allow all valid LDAP users to log in?
Ubuntu Installation :: Cannot ID LDAP User On LDAP Client
Dec 2, 2010I've setup an Ubuntu 10.10 LDAP Client to authenticate off my LDAP server. I've install the following: sudo apt-get install libpam-ldap libnss-ldap nss-updatedb libnss-db nscd ldap-utils pam_ccreds Here's my /etc/nsswitch.conf: passwd: files ldap [NOTFOUND=return] db group: files ldap [NOTFOUND=return] db
[Code]...
OpenSUSE :: Create An User With Yast Using Ldap?
Mar 28, 2011If I create a user with Yast using ldap than at some later point delete that users ( also using Yast ) I cannot recreate a user of the same name until I have rebooted the machine, which seems a bit excessive ! Closing and reopening Yast doesn't work, it still thinks the users exists. Even though it doesn't appear in the Yast and if you look in the ldap browser it is gone. Is there something else that need restarting ( other than the whole box )
View 1 Replies View RelatedOpenSUSE Network :: Ldap Authentication With TLS
Jan 24, 2011I have created a CA on my server then created a server certificate under that then exported it as a common server certificate.I have then gone to my LDAP server and enabled TLS and told it to use the common server certificate.Now on my client I have enabled LDAP TLS/SSL and it's asking me to download a certificate ... from where ? Do I export the certificate to a file and put it on a web server.If so what format as the export offers loads.
View 1 Replies View RelatedOpenSUSE Network :: Import Users Into Ldap?
Apr 16, 2010Now I have my ldap server doing authentication and providing autofs maps perfectly the next question ... is there a utility anywhere that will allow me to stuff 1200 users into the ldap server from a csv file
View 4 Replies View RelatedOpenSUSE Network :: Samba MS LDAP Authentication?
May 7, 2011On this moment i configure a testenvironment with 1 Microsoft active directory server and 1 Opensuse 11 samba filesharing server. But i have a issue. The samba server is add to the domain and the servers can communicate with eachother. I can login to the domain on the samba server and the LDAP settings tab on yast2 samba configuration tool tell me that samba and the MS LDAP server can communicate with eachother. I can see the shares on the samba server but i can't autenticate myself. When i whant to logon than see i always "domain: domainname.local" and "access denied". My question is now how can i give the MS administrator account rights to view the shares and configure the rights for the other users.Samba config file
PHP Code:
[global]
workgroup = WIN-FVJBNQIJE9O@WOENSDRECHT.LOCAL
[code]....
OpenSUSE Network :: Kerberos + LDAP With YaST?
May 26, 2011In the OpenSUSE documentation I red this very exciting chapter Chapter 6. Network Authentication with Kerberos That mentions "Using LDAP and Kerberos" which combined with NFSv4 would give my office net functionality of a M$ Win network.
We are still on 11.2 (we have no win clients at all) and I was testing different setups of 11.4 in VM, but I can't get YaST to configure the LDAP with Kerberos setup (our current setup does not use Kerberos only LDAP). Unfortunately I could not find any meaningful HOWTO on how to do it in SuSE. The page in docs involves editing config files, but I would like to avoid this, because from my former experience with Samba, as it would mean I cannot use yast anymore and that is sad.
Is there a way to configure LDAP + Kerberos (in terms of issuing of krb tickets at login) with YaST?
PS: I basically need Kerberos for NFS and Intranet site.
OpenSUSE Network :: Create A Backup Ldap Server?
Apr 27, 2010We have a ldap server which has been running for a couple years now, and I was told to make a fallback / backup ldap server. So should the old one fail we won't be officially screwed.
View 1 Replies View RelatedOpenSUSE Network :: Password Is Shortened On LDAP Environment?
May 15, 2010I'm using SLES 10 SP3 with an OpenLDAP directory for user authentication. But every time I try to change the password, SLES tells me that it will be shortened to 8 charactes. I also set the susemaxpasswordlength to 30 within the LDAP. Also changing to MD5 for encryption doesn't fix it.
View 2 Replies View RelatedOpenSUSE Network :: Mounting NFS Shares According To LDAP Authentication?
Jan 18, 2011I am posting this as I have tried several times to work this out. I have read article after article, post after post and tutorial after to tutorial to sort this issue. I have an Ubuntu 10.04 machine running as the LDAP and NFS server with two Opensuse 11.3 desktop machines. Both of the Opensuse machines can login using the LDAP server for authentication and this works fine. The server also exports the NFS Shares no problem but I am unable to mount the shares from the Opensuse machines. I have been using Yast, NFS Client to mount them.
Yast NFS Client can see the shares and lists them however when I apply the settings it states:
'Unable to mount entries in etc/fstab' I need to mount the shares according to the LDAP details as I want the users to be able to access their files no matter which machine they login at. Can anyone shed any light on the issue. Any help would be great and I would be enternally grateful as I am now beginning to pull my hear out slightly.
OpenSUSE Network :: Sendmail LDAP Integration (failure)?
Jun 29, 2011I'm trying to integrate sendmail and openLDAP together. I've followed the guide in O'Reilly's LDAP book and my lookups are good. I think my problem is virtual users. What I'm trying to accomplish is that if an email is sent to joe@host.tld and there is an entry in LDAP for joe then it'll be accepted. Right now, it'll only accept emails only for system users. Below is my sendmail.mc (most comments removed)
Code:
divert(-1)dnl
include(`/usr/share/sendmail-cf/m4/cf.m4')dnl
VERSIONID(`setup for linux')dnl
OSTYPE(`linux')dnl
dnl ## I have a real one
define(`SMART_HOST', `my.smart.host')dnl
dnl #
define(`confDEF_USER_ID', ``8:12'')dnl
[Code]...
OpenSUSE Network :: Fiddling Around And Unchecked The Lda Api / Cannot Connect To Ldap Server?
Nov 10, 2010I was fiddling around and unchecked the lda api thingy when I was experimenting with TLS now I can't connect to the ldap server ...is there any way to get it back.
View 1 Replies View RelatedOpenSUSE Network :: Can Make Yast / Ldap Accept Usernames That Start With Number
Mar 31, 2010Can I make Yast/Ldap accept usernames that start with a number. All our current users have the format 09-first.last or 10-first.last etc.
View 2 Replies View RelatedOpenSUSE :: Ldap Via Yast - Ldap-sasl-interactive_bind_s - Local Error - 2
Jul 2, 2010I took to yast to install ldap. I creating the CA cert, server key and server cert and specified them during the yast ldap server dialogs.
The firewall is open for ldap.
I also went through yast's ldap client ... though I didn't exactly see to anything (presuably it wrote up a configuration file somewhere).
However when trying use the basic ldap tools, like ldapwhoami. Well it doesn't connect and gives me the above error. Of coure the ldap db is unpopulated as yet, so it probably is not able to say who am at all. But ldapadd doesn't work either.
It seems to point to my SSL usage not being correct .. so I'm trying to double check that now.
OpenSUSE Network :: Root User Has Access To Remote Folders/files Of Any User?
Jan 21, 2010Prelude: OpenSUSE 11.2 (2.6.31.8-0.1-desktop), installed Novell client 2.0 SP2 (novell-client-2.0-sp2-sle11-i586.iso).
I found that if any usual user is logged into a NDS-tree, then _local_ root has full access to user's network shares, including the user's home directory located on remote Netware-server. Is it by design or
have I missed something? Nevertheless in windows local admin has no access to network resources mounted of any other user. If you runas shell (as admin) then admin in principle can't "see" network shares which were mounted (connected) by other users - they are accessible ("visible") per session.
OpenSUSE Network :: Laptop Samba PDC User And Local User Access Their Own Data?
May 30, 2011Take a physical user FRED. FRED is a linux user ( known by linux on his laptop ) FRED is a Samba user ( Known by samba on the samba pdc server ) When he logs locally (with username/password) on its standalone laptop (with no network), he is known as FRED:user. He access his data in /home/FRED/. When he logs through samba (with username/password) on the domain MY_DOM, he is known as MY_DOMFRED:MY_DOMdomain user. He access his data in /home/MY_DOM/FRED/. ) Is it possible that the human FRED has only one repository and have full access to its repository regardless of how it was connected. If yes, how to do it
2) If not, Is it possible that the human FRED has full access to /home/FRED/.............. and /home/MY_DOM/FRED/.
Server :: LDAP User To NIS User Migration
Aug 3, 2010get the steps for LDAP user to NIS user migration?
View 1 Replies View RelatedOpenSUSE Network :: Promote A "normal" Installation Of Suse As A Domain Controller With LDAP?
Feb 12, 2010I wish to promote a "normal" installation of Suse as a domain controller with LDAP so the other computers in my network need to use a centralised username and password to log onto the machines.The only documentation I can find refers back to suse 9.
View 2 Replies View RelatedRed Hat :: Add LDAP User In Server?
Mar 2, 2010Is it possible to add LDAP user from client to server, in Linux.
I am using RHEL5.0 LDAP server, also i have 10 clients (RHEL 5.0) machine also. I want to know "Is it possible to add LDAP user from client (export) to server".
OpenSUSE Network :: Mounting A Cifs Share As Normal User In OpenSuse 11.4?
Apr 2, 2011Q: How can I allow my users to mount a cifs share without an entry in fstab in OpenSuse 11.4?
I have an answer myself. Until OpenSuse 11.2 I could mount my samba shares by making mount.cifs and umount.cifs setuid root. Today I installed OpenSuse 11.4. Unfortunately mount.cifs isn't anymore allowed to be setuid due to security concerns. Security is not an issue in my case, so I copied the mount.cifs and umount.cifs from 11.2 to make it work again:
1. Download cifs-mount-3.4.2-1.1.3.1.x86_64.rpm from this repository (I use 64 bit):
"http://download.opensuse.org/distribution/11.2/repo/oss/suse/x86_64/"
2. Extract the files mount.cifs and umount.cifs from the rpm and copy them to /sbin
3. Make them setuid root:
Code:
linux-y5qw:~ # chmod u+s /sbin/mount.cifs
linux-y5qw:~ # chmod u+s /sbin/umount.cifs
4. Mount your cifs shares as a normal user:
Code:
martin@linux-y5qw:~> /sbin/mount.cifs //192.168.2.2/data /home/martin/data/ -ousername=martin
Password:
General :: Login As User Into LDAP Client?
Jan 26, 2010I have 389-DS ( Fedora DS) setup on CentOS 5.3 and working fine. I configured LDAP Client and want to login as user created under fedora DS Client. From Client Machine, I can easily see:
Code:
[root@fedoraDS-Client ~]# id ajrain
uid=569(ajrain) gid=569 groups=569 context=root:
system_r:unconfined_t:SystemLow-SystemHigh
This is User from LDAP Server (fedora DS Server) which is showing in Client Machine. So It means its retreiving value from Server. Correct? Now When I am trying to login , it says "Server unexpectedly closed network Connection". When I supplied user password:
Code:
login as: ajrain
ajrain@fedoraDS-Client's password:
The File /var/log/secure says:
Code:
Jan 27 02:39:27 localhost sshd[3996]: pam_unix(sshd:auth):
authentication failure; logname= uid=0 euid=0
tty=ssh ruser= rhost=10.210.53.104 user=ajrain
Jan 27 02:39:27 localhost sshd[3996]: Failed password for ajrain from 10.210.53.
104 port 1241 ssh2
Jan 27 02:39:27 localhost sshd[3997]: fatal: Access denied for user ajrain by PAM account configuration
Server :: How To Delete User Account From LDAP
Feb 4, 2010I configured LDAP. But added a user mistakenly, how can I delete that user account from LDAP. How to create home directory for LDAP users.......
View 1 Replies View RelatedServer :: Adding New User In LDAP Client
May 2, 2010I am facing problem in adding new users in ldap server and client for a long time. I configure ldap server and client successfully and I can login the client machine by a user. User is created on server during configuring the server but after same time when I create a new user on server and create a home dir for the same user on client machine and assign 700 permission on home dir of same user and copy the /etc/skel/.* /home/user-dir and when run the command "#chown -R user:users /home/user" it shows invalid user error.
View 1 Replies View RelatedCentOS 5 :: Ldap For Simple User Authentication?
Jun 22, 2010I have a centos 5 system with openldap configured. I need openldap for simple user authentication. ie.. to be able to use it for authenticating it from remote applications and systems like mail clients...etc.
I was able to succefully install and configure openldap and ran a slaptest to verify the slapd.conf file for errors and found none. so now all i want to do is to add username and passwords to the ldap database.
iam just not sure what all objectClasses i need to use for Attributes uid and userPassword and what exactly should be the ldif file syntax for the above entries. I tried various sources but i do either get errors while adding or after adding do get errors trying to access it.
above all, iam able to access the ldap server from my phpldapadmin only as a anonymous user and not as a root user that i added as a first entry.
Fedora Security :: Change Password Ldap User?
Apr 13, 2011I have a problem with my fedora workstation.I am trying to change my ldap user password through passwd command.When I first create the user on ldap server, I use md5 and create the user password.This is the entry:
Code:
dn: uid=boo,ou=People,dc=linux,dc=gettolandia,dc=org
uid: boo
[code]....
Ubuntu :: Evolution To LDAP Connection As Normal User?
Oct 16, 2010Anyone had any issues with connection to LDAP server from evolution as a normal user, but if evolution is started as sudo/root it works fine. This is on 10.10
View 1 Replies View RelatedGeneral :: LDAP User Authentication For Access To Video
Jun 8, 2011I've a webpage that has some links to videos. When an user click on that link, I need the user to redirected to the login page which check credentials with ldap server and then grants access to the video. I've searched google for some code but all I found is some samples that authenticates the user. But when the user enters the login credentials how do I implement that code in the backend and redirect to the video if the user can authenticate himself?
View 3 Replies View Related