서버측의 설정은 모두 끝난거 같고 프로세스 돌아 가는거
확인했습니다.
클라이언트 측에서도 /etc/ldap.conf 에
#ssl no
host 127.0.0.1 <== 여기에 적어줘야될 아이피 주소는
서버측의 아이피가 맞나요?
base dc=도메인,dc=net
rootbinddn cn=root,dc=도메인,dc=net
scope one
pam_min_uid 500
pam_max_uid 65000
pam_filter objectclass=posixaccount
pam_login_attribute uid
pam_member_attribute gid
pam_template_login_attribute uid
pam_password md5
nss_base_passwd ou=People,dc=도메인,dc=net?one
nss_base_shadow ou=People,dc=도메인,dc=net?one
nss_base_group ou=Group,dc=도메인,dc=net?one
/etc/nsswitch.conf에
passwd: db files ldap
shadow: db files ldap
group: db files ldap
/etc/pam.d/system-auth
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is
run.
auth required /lib/security/pam_env.so
auth sufficient /lib/security/pam_unix.so likeauth
nullok
auth sufficient /lib/security/pam_ldap.so
use_first_pass
auth required /lib/security/pam_deny.so
account required /lib/security/pam_unix.so
account [default=bad success=ok user_unknow=ignore
service_err=ignore system_err=ignore] /lib/security/pam_ldap.so
password required /lib/security/pam_cracklib.so retry=3
type=
password sufficient /lib/security/pam_unix.so nullok
use_authtok md5 shadow use_authtok
password sufficient /lib/security/pam_ldap.so
use_authok
password required /lib/security/pam_deny.so
session required /lib/security/pam_mkhomedir.so
skel=/etc/skel umask=026
session required /lib/security/pam_limits.so
session required /lib/security/pam_unix.so
session required /lib/security/pam_ldap.so
/etc/pam.d/passwd
#%PAM-1.0
auth required /lib/security/pam_stack.so
service=system-auth
account required /lib/security/pam_stack.so
service=system-auth
password required /lib/security/pam_stack.so
service=system-auth
auth sufficient /lib/security/pam_ldap.so
auth required /lib/security/pam_pwdb.so
password required /lib/security/pam_cracklib.so retry=3
minlen=4 dcredit=0 ucredit=0
password sufficient /lib/security/pam_ldap.so use_authtok
password required /lib/security/pam_pwdb.so use_authtok
nullok md5 shadow
이런식으로 클라이언트를 설정해줬습니다.
이다음에 해줘야될께 뭔지요?
모듈들 다 있는거 확인했고요
서버측 설정도 다확인했고요 프로세스 돌아 가는거까지 확인을
다했거든요..
client 측에서 이것말고도 더 설정해줘야되는것과 다른 프로세스를
돌려야되는것등 아시는분 좀 갈켜주세요 (__)
생각보다 어렵네요 (__)
|