Name Service Switch (NSS) for LDAP user authentication - possible?
Wim Vinckier
wimpunk at gmail.com
Thu Jan 26 16:50:38 UTC 2006
On 1/26/06, Tomasz Chmielewski <mangoo at wpkg.org> wrote:
> Hello,
>
> I'm just developing an "embedded domain controller".
> It is based on Samba and OpenLDAP, and as an operating system in has
> Linux OpenWRT / uclibc, which has busybox at its heart.
>
> Samba doesn't like such environments very much, and it would be best if
> it could fetch the users from an LDAP server.
>
> As far as I understand, to do this, one needs Name Service Switch.
>
> What steps do I have to take to add Name Service Switch to a
> busybox-based distribution, so that the system could get the users and
> groups from an LDAP server?
>
>
> --
> Tomasz Chmielewski
> http://wpkg.org
> _______________________________________________
> busybox mailing list
> busybox at busybox.net
> http://busybox.net/cgi-bin/mailman/listinfo/busybox
>
I don't think you need need nss for this. On my (normal) servers I
just use something like:
<config>
passdb backend = ldapsam:ldap://myldapserver
ldap admin dn = cn=admin,dc=example,dc=be
ldap suffix = dc=example,dc=be
ldap ssl = no
</config>
It uses the ldap connection of samba...
More information about the busybox
mailing list