I recently set up a ldap server for user authentication and I want to be able to configure the passwd utlity to automatically update the password for the local account AND on the ldap server. How would I go about this?
View 7 RepliesI recently set up a LDAP server, and have a server using it to authenticate users.
That works completely, but when a user tries to use passwd to change his password this happens.
Code:
And this is in /var/log/auth.log
Code:
I need to configure the DNS server and Ldap server in ubunru 10.10.
View 1 Replies View RelatedHow to configure ldap technology in fedora & linux.
View 3 Replies View RelatedI'm new LDAP kind of stuff.I want to configure LDAP server and Client on windowsXP. could you tell me which Open source LDAP Server and client are best fit for windowsXP. Is OpenLdap not suitable for windows?
View 8 Replies View RelatedI'm trying to setup a LDAP server and it seems to have all gone pretty well. I set it so that users that type their passwords wrong 5 times are locked out for 20 minutes. That works fine, but if I want to log on as an admin and unlock their account before that 20 minutes is up it isn't working.Normally, (authenticating locally)
Code:
passwd -u blank888
works and does what I want it to. If I want passwd to recognize the LDAP server I use
Code:
passwd -D cn=Administrator,dc=example,dc=com -u blank888
When I run that, it always asks for the admin password like it should, but then will only work on some accounts and not others. Mainly I've seen that it only works on accounts that already had local accounts before connecting to the LDAP server.If I run a passwd -Sa command I will get something like:
blank888 LK 07/18/2011 0 999 7 -1
blank888 LK 07/18/2011 0 999 7 -1
test LK
blank888 already had an account on the machine, but also had a LDAP account along with test. So blank888 is showing twice because he has both LDAP and local accounts, whereas test only has a LDAP account. So now if they both get locked out passwd -D $adminDN -u $account will work for blank888 but not test. Then the results of a passwd -Sa would be:
blank888 PS 07/18/2011 0 999 7 -1
blank888 PS 07/18/2011 0 999 7 -1
test LK
I need to be able to unlock test using passwd. The LDAP server is running 11.2, and the hosts are running various Linux distros, and XP.Can anything think of a way to fix this without removing the LDAP server, adding local accounts for everyone, and then putting the LDAP server back on?
I'd like to allow my laptop to be disconnected from the network and login with a user stored on LDAP. I know nscd can cache usernames and groups but not shadows, but is there a solution that will cache passwords?
View 1 Replies View RelatedWhile I've been using Linux for a little while now, I have only recently been getting into setting up and using a server at home (in part because until recently I only had ONE computer at home). I have heard of LDAP and OpenLDAP, but I am not sure if this is the best tool to do the following. Centralize logins and passwords for all of the computers at home, so I only have to change/manage one place. Since I keep installing Linux Distros it would be nice if I didn't have to add each person, individually each time.
Provide single sign-on authentication for the user so when they go to the Samba server they don't have to do another login, but they are limited in what they can see. Basically I don't want the kids being able to see *MY* files
- Works with Linux (various) and Windows (Windows 7 more than XP)
- Works with desktop and laptop
- Be able to, possibly, pass this authentication to the web server so likewise do not need to log into the web server after logging into the computer.
- (optional) be able to set up a script to run automatically to either map network drives or mount samba directories based on the user being logged in (smb://user/<username>) and/or backup the system.
I say optional because if it can that is great, but if it cannot then it isn't a show-stopper. Like I said, I am very new to servers and networking and do not know where to start regarding this. Right now I have a basic (too open) file server and a web server just beginning to be developed (working on Drupal). Not only do I need to figure out what/where to research about the server settings but also setting up the client-side of things.
I am looking for ideas for getting windows users into an ldap server. I am currently running a Linux server for my department and need to create an LDAP server which mirrors the username/password information for all of us as they are stored in the windows server here. I have the openldap server up and running on Ubuntu 8.04 and it works great; I now need to find some way to import user info into this from windows. I've seen discussions of using ldifde.exe to export the AD users into an ldif file. Is this the simplest way to go about it?
Our Linux server is currently providing us with much needed services using apache, and apache is authenticating using LDAP to our windows server (Using our windows username / password is required functionality). This windows server has some problem which causes it to delay for inordinate amounts of time between authentication requests and responses. The situation is such that this problem will not be addressed by IT staff. However, I have control over the Linux server so I am looking to just mirror the windows server on an LDAP server of my own. I could get away with updating the passwords in the Linux server.
The common wisdom seems to be to setup an SMTP server (say postfix) so that connections either coming from the same host or where the end delivery is local can do so without using any authentication mechanism.
This will for example allow fetchmail to deliver fetched mail locally on port 25 (without logging in) for any user.
However, what if I setup the SMTP server to force every incoming connection to be authenticated regardless if the end delivery is local or relayed and regardless where the connection comes from.
Is it possible to configure fetchmail to use a password when doing the local delivery?
(I haven't been able to find any such configuration options in fetchmail.)
we know that /etc/passwd - is a replica of /etc/passwd file and acts as a backup in any damage done to /etc/passwd file..i have observed a strange thing in RHEL 5.4....for example... if /etc/passwd has 100 accounts.. then /etc/passwd - is having only 99 accounts....when i add 101 useraccount with "useradd" then /etc/passwd has 101 accounts and /etc/passwd is having the 100th account of /etc/passwd - ..when i delete /etc/passwd and recover it with /etc/passwd - from runlevel 1 the lastly created user is not having his account after recovery.. what is the solution? this is same case even with /etc/shadow and /etc/shadow -
View 2 Replies View RelatedI have a program called "PortForward" to do the job in Windows... But I've been searching for the better part of 2 hours trying to find one for Linux.
I can use the router's admin interface, but it limits the number of forwards you can add. And I would like to be able to add more simply because the applications I need to forward aren't already included.
I would like to run a server or ssh or ftp on a specific portSort of jailed daemon that runs with a login / pwd that is not /etc/passwd based to?
View 9 Replies View RelatedCan any one tell me how to configure Tomcat ldap URL authentication perfectly?
I've tomcat installed with port forwarding to http(80).
I could able to confiure apache ldap authentication. For this i modified the file '/etc/apache2/sites-enabled/000-defaults' with the DocumentRoot /var/www.
But for tomcat '/usr/share/tomcat/webapps' I could not able to configure 'server.xml' file perfectly.
I have to configure LDAP on SUSE11.3 guide me about the step to be taken for the configuration. My boss gave me task to move 2003 to SUSE.
View 2 Replies View RelatedWe have several FC machines (from 6 to 12) that use an OpenLDAP server running on Centos 5.4 for authentication. I have now tried setting up a FC13 workstation. I notice that the authentication GUI has changed and wants me to use Kerberos or a TLS enabled server. Is there a way to get FC13 to behave like FC12 in this respect. Or (less desirable) what changes do I have to make to the server to accommodate FC13?
The workstation knows who the users are, but will not authenticate if they try and log in.
[URL]
but it didn't work for me
How to configure LDAP server in redhat5.1 but i want to know how to configure it.
View 5 Replies View RelatedI'm trying to set up the server to at least ask for a password. I can connect to it without any trouble, but so can everyone else.How can I make samba ask for a password?
View 2 Replies View RelatedAlthough my smb.conf file cites /etc/samba/smbpasswd as the password file, I see that it is not in some database file. Since smb.conf doesn't seem to look anywhere else but /etc/samba/smbpasswd, how can I direct it to the new password scheme. At least this is what I find when using SWAT to display the smb.conf file contents.This seems to be preventing my windows client having access to shared printers, but yet, not shared files.
View 2 Replies View RelatedI have just set my self up a new LAMP server running php and mysql. I get the following error when trying to acces mysql databases through php Code: Could not connect: Access denied for user 'danhorni'@'localhost' (using password: NO) I am using a password I can login fine through phpmyadmin
View 1 Replies View RelatedI recently built a small server for my dad, to host a business website aswell as manage storage of important documents (raid 1).Yesterday I thought I would try out zentyal. I got it working, mostly. It seemed very useful.However, ANY password authentication; including login, sudo, ssh, was extremely laggy. Were talking a minute after entering the password.I have done
Code:
sudo apt-get purge zentyal zentyal-samba
And
[code]...
I wonder if it is possible to have two passwords for one user account in 9.10. I have a long login password (5 words about 45 characters with spaces caps). I would like to set a shorter password for Authentication, sudo, etc. While retaining the original for logging in.In short:Have long password to login to computer.Have short password for everything after login.
View 6 Replies View RelatedI am trying to configure ldap logins on a fc14 client to authenticate via a suse linux enterprise server 10 ldap server.
I can login with clients running on all opensuse versions as well as mint, ubuntu,etc. Just can't get fc14 to authenticate.
I have tried [URL] with no luck.
I would update the bios of my asus with this utility [URL]. Do you think I can use that under wine?
View 6 Replies View RelatedI have just installed Fedora 12 (i686) and I am running the update utility, But after I do, I get this error! What to do? Link to image: [URL]
View 1 Replies View RelatedOn other editions of ubuntu server I had no problem saving multiple users and passwords with htdigest but now it seems it is only possible to save one user and password.
Code:
sudo htdigest -c /etc/apache2/passwords directory user
When I add a second username and password for the same directory it overwrites the first.
So I've set up a Samba server through the gui. When I've labeled my shares as accessible to everyone, I can get to it no problem. However, when I tie it down to a specific samba user, I can't.
By all indications, it appears that it isn't saving the password because every time I go to edit users, it has the exact same string in the password field.
We use a Linux server with AFS on it. I changed the linux root password using passwd. The new password will let me log in as root but when I try to change the AFS admin password it asks for the root password. When I put in the password that it let me log in as root. It tells me authentication failed. And when I run the password command with -admin admin, it asks for the admin password. I put in the admin password that worked before I changed the root and it says authorization failed.
View 5 Replies View RelatedI have a 389-ds with a large user base. All passwords are stored plaintext. I would like to convert all these stored passwords to a hash, say SHA-1.
View 2 Replies View RelatedHow do I install this on my server? Here is an example: [URL]
View 3 Replies View Related