Date: Wed, 25 Feb 2009 17:14:08 +0700 (ICT) From: Olivier Nicole <on@cs.ait.ac.th> To: on@cs.ait.ac.th Cc: freebsd-questions@freebsd.org Subject: Re: LDAP pam Message-ID: <200902251014.n1PAE8s6014843@banyan.cs.ait.ac.th> In-Reply-To: <200902230937.n1N9bJ9l016999@banyan.cs.ait.ac.th> (message from Olivier Nicole on Mon, 23 Feb 2009 16:37:19 %2B0700 (ICT)) References: <200902230937.n1N9bJ9l016999@banyan.cs.ait.ac.th>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, Could someone confirm my understanding: 1) things like getent(1), getpwnam(3) use: /etc/nsswitch /usr/local/etc/nss_ldap.conf 2) things like sshd, with pam_ldap use: /usr/local/etc/ldap.conf So if I have different filter in /usr/local/etc/nss_ldap.conf and /usr/local/etc/ldap.conf I can have a different list of users that would apply to getent and sshd. The purpose is to have all the users listed in getent, but only some allowed to login into the machine. TIA, Olivier
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200902251014.n1PAE8s6014843>