Re: pam_group and nss

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On many systems, you can simply create the group locally and add  
members to it in /etc/group. The group memberships will be  
concatenated with those in LDAP.

This assumes that "files" appears in your nss config. Something like  

passwd      files ldap
group       files ldap

Be sure that the local group IDs match up with the LDAP groups you're  


On Oct 20, 2009, at 5:48 AM, "Wilhelm Meier" <wilhelm.meier@xxxxxxxx>  

> Hi all,
> we are using pam_group in combination to pam_ldap to give users
> additional group membership like plugdev. This is ok but not for hald,
> since it uses nss to resolve the group membership of a given user.
> What is the best way to provide in a system-wide manner the nss- 
> service
> with additional group memberships? (We do not have the change to add  
> the
> memberships to the ldap directory ...)
> -- 
> Wilhelm
> _______________________________________________
> Pam-list mailing list
> Pam-list@xxxxxxxxxx

Pam-list mailing list

[Index of Archives]     [Fedora Users]     [Kernel]     [Red Hat Install]     [Linux for the blind]     [Gimp]

  Powered by Linux