From owner-freebsd-hackers Thu Jul 22 2:56:42 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from iclub.nsu.ru (iclub.nsu.ru [193.124.222.66]) by hub.freebsd.org (Postfix) with ESMTP id 12E2C14FBF for ; Thu, 22 Jul 1999 02:55:26 -0700 (PDT) (envelope-from fjoe@iclub.nsu.ru) Received: from localhost (fjoe@localhost) by iclub.nsu.ru (8.9.3/8.9.3) with ESMTP id QAA67161; Thu, 22 Jul 1999 16:52:02 +0700 (NSS) (envelope-from fjoe@iclub.nsu.ru) Date: Thu, 22 Jul 1999 16:52:02 +0700 (NSS) From: Max Khon To: Oscar Bonilla Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: PAM & LDAP in FreeBSD In-Reply-To: <19990716123648.C3049@fisicc-ufm.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG hi, there! On Fri, 16 Jul 1999, Oscar Bonilla wrote: > Following up on my own post: > > For LDAP to be seamlessly integrated into the system some of the libraries > have to be changed. Specifically the ones dealing with /etc/passwd and > user information. > > I've decided the best way to do this is to do what's done with NIS. > Basically handle the case where the user is not available in the local > databases. > > the idea is to have an entry in the /etc/passwd enabling LDAP lookups. > the Entry would be of the form > > ldap:*:389:389:o=My Organization, c=BR:uid:ldap.myorg.com > ^^^ ^^^^^^^^^^^^^^^^^^^^^^^ ^^^ ^^^^^^^^^^^^^^ > | | | | > port base dn attr LDAP Server > > This comes ftom a pam_ldap module I got from Pedro A M Vazquez > > > I'll change all of the function in lib/libc/gen/getpwent.c to handle this > special case. > > The only problem is that openldap has to be integrated on the base system > for this to compile... can I safely copy it to /usr/src/contrib? > > How do I submit this after it's done? anyone cares about ldap :)? aargh. looks horrible to me. better try to implement NSS /fjoe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message