LDAP Client configuration for authentication?

Forums Network Management Linux and Networking LDAP Client configuration for authentication?

  • This topic is empty.
Viewing 3 posts - 16 through 18 (of 18 total)
  • Author
  • #47332

    For whatever reason, I could never get rootbinddn to work until I logged into my zeroshell machine through SSH and manually added the line:

    rootbinddn cn=manager,dc=SPG

    There’s one already there, but it’s commented out by default. Then, I had to create a file /etc/ldap.secret and put my login password there, and chmod 600.

    Once complete, at least different LDAP clients successfully authenticate. Most of the ones I’ve been playing with–OpenFiler and Redmine, specifically–refuse to auth when connecting to an LDAP server without a password. I’m kind of new to this, so I could be completely wrong. 🙂


    The rootbinddn is available in the file /etc/ldap.conf that just can affect the OpenLDAP clients and not the slapd daemon (OpenLDAP server). It is strange that modifying it in Zeroshell it fixes your problem.
    In any case, do not forget that Zeroshell cannot authenticate by using LDAP. The authentication is delegated to Kerberos5.



    @yum wrote:

    I’d suggest you using Fedora distribution. There is an utility called “authconfig-tui”, which works perfectly. You just have to specify “LDAP” for authorization, “Kerberos” for authentificaton, provide Zeroshell’s IP-address for both services, input LDAP base dn and Kerberos realm based on domain name. No need to edit configuration files by hand.


    I follow this instruction and now I can connect to my fedora 23 VM using zeroshell LDAP.

    When I enter the username and password, user information is retrieved into the ldap (as group and organization set in ZS are displayed in the Fedora login window), password is validated as session open, but user is automatically and immediatly disconnected.

    I check with local administator the user profile and I can see login and logout in information.

    I’m a newbie on ldap, and trying to implemente it for the first time. I check Fedora users and groups documentation, look etc/group and etc/passwd files, without success. I believe this is more a Fedora issue than a Zeroshell one, but I’m thinking you can help me ?



Viewing 3 posts - 16 through 18 (of 18 total)
  • You must be logged in to reply to this topic.