LDAP pam
Olivier Nicole
on at cs.ait.ac.th
Wed Feb 25 02:14:21 PST 2009
Hi,
Could someone confirm my understanding:
1) things like getent(1), getpwnam(3) use:
/etc/nsswitch
/usr/local/etc/nss_ldap.conf
2) things like sshd, with pam_ldap use:
/usr/local/etc/ldap.conf
So if I have different filter in /usr/local/etc/nss_ldap.conf and
/usr/local/etc/ldap.conf I can have a different list of users that
would apply to getent and sshd.
The purpose is to have all the users listed in getent, but only some
allowed to login into the machine.
TIA,
Olivier
More information about the freebsd-questions
mailing list