Hi,
Quoting denis via Info <info@xxxxxxxxxxxxxxxxxx>:
Hi all
Thanks for the feedback. I tried to configure saslauthd to use
pam_ldap without success using this tutorial
https://computingforgeeks.com/how-to-configure-ubuntu-as-ldap-client/. Does
any one have a working configuration file/s for /etc/ldap.conf,
/etc/ldap.secret, /etc/pam.conf or for /etc/saslauthd.conf
We are using RHEL 8. Saslauthd is run with "-a pam"
and we have a /etc/pam.d directory, therefore /etc/pam.conf
is not used but individual files for each service
=== /etc/pam.d/imap ====
#%PAM-1.0
auth sufficient /lib64/security/pam_unix.so
auth required /lib64/security/pam_ldap.so try_first_pass
account sufficient /lib64/security/pam_unix.so
account required /lib64/security/pam_ldap.so
/etc/pam.d/imaps, /etc/pam.d/pop, /etc/pam.d/pops, /etc/pam.d/sieve link
to /etc/pam.d/imap
check your pam_ldap manpage which config file is used
and how the connection to the server handled.
In our case nslcd is used
=== /etc/nslcd.conf ===
uid nslcd
gid ldap
URI ldap://ldapserver1.mydomain:389 ldap://ldapserver2.mydomain:389
ldap://ldapserver3.mydomain:389
base "o=My Orga,c=DE
binddn cn=searchuser,ou=myou,o=My Orga,c=DE
bindpw TopSecretPassword
scope sub
bind_timelimit 1
timelimit 1
ssl start_tls
You may want to use map and filter Options, and also "tls_reqcert
allow" if you ldapserver does
not has certificate that can be verified
We do not use Groups
Kind Regard
Michael Menge
--------------------------------------------------------------------------------
Michael Menge Tel.: (49) 7071 / 29-70316
Universität Tübingen Fax.: (49) 7071 / 29-5912
Zentrum für Datenverarbeitung mail:
michael.menge@xxxxxxxxxxxxxxxxxxxx
Wächterstraße 76
72074 Tübingen
------------------------------------------
Cyrus: Info
Permalink: https://cyrus.topicbox.com/groups/info/T1c604a219c5fa805-M4383fcd70744b3625dcd4f9a
Delivery options: https://cyrus.topicbox.com/groups/info/subscription
