El 16/6/21 a les 9:20, Vladislav Kurz ha escrit:
Is there some advantage using pam_krb5 instead of pam_ldap/pam_winbind
or "saslauthd -a ldap"?
Easy configuration, just set up /etc/krb5.conf
Ah, OK, if that's all then pam_winbind it's even easier (though I just
switched to it yesterday, before that I had saslauthd configured to use
ldap directly).
[libdefaults]
default_realm = YOURREALM
[realms]
YOURREALM = {
kdc = 192.168.x.x
}
If you set your DNS properly to resolve YOURREALM in DNS, you are fine with
just the [libdefaults] section. Then just check if login works with kinit.
Originally I tried LDAP, and failed too. This worked flawlessly.
I had no problems[*] with saslauthd using -a ldap, never tried pam_ldap.
[*] well, maybe I had to struggle to get the right configuration but I
don't remember.
Bye
--
Luca Olivetti
Wetron Automation Technology http://www.wetron.es/
Tel. +34 93 5883004 (Ext.3010) Fax +34 93 5883007
------------------------------------------
Cyrus: Info
Permalink: https://cyrus.topicbox.com/groups/info/T1c604a219c5fa805-M0c17541fb38d8980a3674e52
Delivery options: https://cyrus.topicbox.com/groups/info/subscription
