Contributed by Dengue on from the implementation dept.
LDAP authentication of user accounts on OpenBSD has been brought up on misc@ a number of times in the past. This happens to really interest me because, I'm into directories. It's shameful and awkward, but what can I say?In the absence of a login_ldap module for bsd_auth(3) , and upon learning that FreeRADIUS supports LDAP as a backend, I decided to explore the use of login_radius(8) as a means of authenticating user accounts on OpenBSD against a central LDAP directory.
As an added bonus, it worked. You can read "Authentication of user accounts on OpenBSD using LDAP via RADIUS" , at my other home .
--jim
(Comments are closed)
By Jedi/Sector One () j@pureftpd.org on http://www.pureftpd.org
I had been looking for that for months.
And your web page is clear and explains everything, step by step. Congratulations.
By David () on
By panda () panda@NOSPAMepita.fr on mailto:panda@NOSPAMepita.fr
you preferred network FS here}, with files belonging
to other users in the ldap directory (their homes are here
too !). type ls -l, and oh surprise, you can only see
numbers there.
the big chunk of work would be to migrate the old
and unmodular getpwent and getgrent to a more
nsswitch like scheme, with support for additional
name and group resolving methods.
what do you all think ?