LDAP Client configuration

• The client requires the proper /etc/nsswitch.conf

  • we installed nsswitch.ldap and moved nsswitch.conf to nsswitch.nis
  • then we have a symlink nsswitch.conf to switch between NIS and LDAP

• Our nsswitch.ldap contains (some entries left out)

  passwd: compat ldap
  
  group: files ldap
  hosts: files dns ldap
  services: files ldap
  netgroup: files nis

• The library libnss_ldap needs additional info in /etc/ldap.conf

  • OpenLDAP clients expect the file in /etc/openldap, therefore symlink it
  • ldap.conf contains info on ldap servers, ldap version etc.
  • specifying more than one server makes the mechanism (more) failsafe

Previous slide

Next slide

Back to first slide

View graphic version