[19244] in Kerberos
Re: Kerberos-Gssapi-ldap-pam interaction
daemon@ATHENA.MIT.EDU (Turbo Fredriksson)
Wed May 14 09:08:12 2003
To: kerberos@mit.edu
From: Turbo Fredriksson <turbo@bayour.com>
Date: 14 May 2003 15:06:32 +0200
In-Reply-To: <slrnbc44f5.2u2.walter+SP@droopy.sun.efrei.fr>
Message-ID: <877k8tfzjb.fsf@papadoc.bayour.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Errors-To: kerberos-bounces@mit.edu
>>>>> "Jerome" == Jerome Walter <walter+SP@M.efrei.fr> writes:
Jerome> But, trying to get accounting info in the LDAP server is
Jerome> quite more complicated. I tried different configurations
Jerome> with nss, pam_ldap and pam.d config files but did not
Jerome> manage to get the account required pam_ldap.so working:
Jerome> Insufficient credentials to access authentiation data
What is saying 'Insufficient credentials'? PAM/LDAP? Login?
Jerome> Is there someone who have ever installed such a config ?
On a NUMBER of machines. Rocks MY world! :)
Jerome> could you give me advices about how to configure things up
Jerome> ?
http://www.bayour.com/LDAPv3-HOWTO.html
Jerome> In a near future i sould try OpenAFS, is there something
Jerome> special i sould not do ?
Get Kerberos working fully and learn how to administrate the whole
shebang (LDAP, Kerberos etc) :)
Jerome> Finally, is there something special to do to make sudo and
Jerome> ssh not requiring entering the password again ?
Jerome> try_first_pass does not seem to work...
I don't care. I use 'ksu' instead :)
If you want to do ssh, use the package 'ssh-krb5'. It's in woody...
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
