Part II - LDAP Client using nss_pam_ldap

Hello good morning, here in indonesia still morning, I write this article at 9 am, but never mind, lets continue my next article. at this part I will make a LDAP Client still using Centos 6.2, continuing my last article about Directory Server Part I. I'm using nss_pam_ldap for it, you can read the manual here.
Ok, first we need install the package (-_-! of course).
[root@localhost ~]# yum install nss-pam-ldapd

We need configure some files:
Minimum configuration for nslcd.conf
uid nslcd
gid ldap
base dc=sidoel,dc=com
uri ldap://
configure /etc/sysconfig/authconfig for enabling USELDAPAUTH
configuring /etc/nsswitch.conf
passwd:     files ldap
shadow:     files ldap
group:      files ldap

hosts:      files dns

bootparams: nisplus [NOTFOUND=return] files

ethers:     files
netmasks:   files
networks:   files
protocols:  files
rpc:        files
services:   files

netgroup:   files ldap

publickey:  nisplus

automount:  files ldap
aliases:    files nisplus
check all auth configuration
[root@localhost ~]# authconfig --updateall
Starting nslcd:                                            [  OK  ]
restart the nslcd services
[root@localhost ~]# /etc/init.d/nslcd restart
Stopping nslcd:                                            [  OK  ]
Starting nslcd:                                            [  OK  ]
cek our ldap account and group
[root@localhost ~]# getent passwd | grep fazrie
[root@localhost ~]# getent group | grep Linux
Linux Users:*:1001:
you can read this as a reference


  1. When i try to login:
    following error occures:

    login as: fazrie
    fazrie@'s password:
    Last login: Mon Oct 8 16:11:43 2012
    Could not chdir to home directory /home/fazrie: No such file or directory

    now what: How to automount home directory of any
    user on client machine?


Post a Comment

Popular posts from this blog

authentication failure using SSH pam_unix(sshd:auth): authentication failure;

Howto configure SPLUNK Universal Forwarder

openvpn howto make OCSP server using OpenSSL [Part2]