Thus spake á»é§:
> I have successfully set up OpenLDAP on my server( red hat 6.2) And
> I have my mail server (I use sendmail as my mail server on another
> computer on red hat 7.0)And I want to set up user authentication. I
> mean I need sendmail to log in authenticate via ldap. but I really
> don't have any idea about it. could you tell me how to do it step be
> step? which computer do I have to install pam_ldap? what I have to
> do to config pam_ldap and sendmail? And does it have any pre-install
> before pam_ldap?
You need {pam,nss}_ldap installed on all the systems that will be using
it for authentication & naming service (mapping UID<->username).
First you need to set your OpenLDAP server up through the method described
in the Quickstart document (or otherwise, if you know how). Then you
need to migrate your existing /etc/passwd into LDAP. RH's nss_ldap rpm
includes the scripts to do this; you really only need to do /etc/passwd,
/etc/shadow (I forget if there's a separate script), and /etc/group.
Then you need to set up /etc/ldap.conf (which is used by {nss,pam}_ldap,
not OpenLDAP--those are in /etc/openldap on RH), with the LDAP server
and the base DN.
After that, you're on your own for utilities for adding new users to the
LDAP server. I personally use LDAP Explorer right now. There's a project
called 'addluser' which is an adduser script which I plan to investigate.
Sendmail also has some of it's own LDAP support, but I've never worked
with it.
Red Hat also has information in its reference guide:
http://www.redhat.com/support/manuals/RHL-6.2-Manual/ref-guide/ch-ldap.html
Wil
--
W. Reilly Cooley wcooley@nakedape.cc
Naked Ape Consulting http://nakedape.cc
LNXS: Linux/GNU for servers, networks, and http://lnxs.org
people who take care of them. *Now with integrated crypto!*
irc.openprojects.net #lnxs
"I go on working for the same reason a hen goes on laying eggs."
- H. L. Mencken
