Just an update on this. In authconfig you have to configure authentication to both kerberos and ldap. I changed my ldap password to something other than my kerberos password. I was able to get logged in and authorized, but people not in the group listed in groupdn were unable to. -Troy ----- Original Message ----- From: Troy Knabe <knabe@xxxxxxxxxxx> Date: Thursday, October 11, 2007 9:36 am Subject: RE: ldap authorization To: General Red Hat Linux discussion list <redhat-list@xxxxxxxxxx> > No, I mean a groupOfUniqueNames. > > -Troy > > -----Original Message----- > From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list- > bounces@xxxxxxxxxx] On Behalf Of Nigel Wade > Sent: Thursday, October 11, 2007 9:28 AM > To: General Red Hat Linux discussion list > Subject: Re: ldap authorization > > Troy Knabe wrote: > > So I can't do Kerberos authentication and ldap authorization > and have group based access defined by pam_groupddn?? > > > > If by "group" you mean POSIX group, I don't believe so. > > -- > Nigel Wade, System Administrator, Space Plasma Physics Group, > University of Leicester, Leicester, LE1 7RH, UK > E-mail : nmw@xxxxxxxxxxxx > Phone : +44 (0)116 2523548, Fax : +44 > (0)116 2523555 > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Troy Knabe Senior Systems Administrator Computing and Information Services 4J School District knabe@xxxxxxxxxxx Ph: 541.687.3587 -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
