[nssldap] Using nss_base filters

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Ken Kleiner <ken [at] cs.uml.edu>
To: nssldap [at] padl.com
Subject: [nssldap] Using nss_base filters
Date: Thu, 15 Apr 2010 17:01:54 -0400

Hi,  I have set up a ldap posix group and have put members into it by including 
their username in memberuid fields.  This works fine from a group perspective.

What I'm trying to do is to configure one of our systems using nss_ldap and pam 
with ldap auth so that only users in that group can be looked up (with id, 
getent passwd, etc).  Then I'd like to authenticate them if so, so I think I can
use pamgroup_dn for that.  

Is that what I use nss_base_passwd for?  I can't figure out the syntax.  

Trying

nss_base_passwd  ou=People,dc=my,dc=domain?one?gidNumber=12345

doesn't work as expected  - that only lists users whose primary group id is 
12345, not those who are IN group 12345.

Any help is appreciated.  Thanks.

Ken Kleiner
System Manager
University of Massachusetts Lowell
Computer Science Department
978 934 3645

[nssldap] Using nss_base filters, Ken Kleiner

Re: [nssldap] Using nss_base filters, Aaron Turner
Re: [nssldap] Using nss_base filters, Douglas E. Engert
- Re: [nssldap] Using nss_base filters, Prentice Bisbal

Prev by Date: [nssldap] netbsd nss_ldap & pam_ldap issues
Next by Date: Re: [nssldap] Using nss_base filters
Previous by thread: [nssldap] netbsd nss_ldap & pam_ldap issues
Next by thread: Re: [nssldap] Using nss_base filters