[Comm] ldap - Á×ÔÏÒÉÚÁÃÉÑ É acl × slapd.conf
sergey
=?iso-8859-1?q?serj_=CE=C1_mk=2Ekp=2Ekm=2Eua?=
ðÎ óÅÎ 23 11:39:48 MSD 2002
On Sat, 21 Sep 2002 23:32:30 +0400
"áÌÅËÓÅÊ ìÀÂÉÍÏ×" <avl ÎÁ l14.ru> wrote:
> Ïêìâì ïå îðúè õäåíâæû èàåæïèá ÿâòêõû þ ÷âÿå äíó àæåïêó ìïêãìê êÿ ldap.
>
> òôðùè õðþåæâ ïâ õíåäèáüêå æåîý:
> 1) ìâì þìíáàêæû ê úäå òðõîðæôåæû íðúê openldap õåôþåôâ?
> þ îâïå ïâùåí ðòçêá loglevel ê ïâîåì õîðæôåæû þ õêõíðú.
> õæâþíá þ slapd.conf loglevel=1 128 êæä ê õîðæôá þ /var/log/* - æêùêïâ òðíïâó.
> åõíê ÿâòèõìâæû, ïâòôêîåô, ldapsearch õ ðòçêåë -d 1, æð íðúê êäèæ òôóîð õ ôåÿèíûæâæâîê, ïð éðæåíðõû ÷ý õîðæôåæû íðúê êîåïïð õåôþåôâ òôê õæèìå þ ïåúð, ïâòôêîåô, êÿ evolution êíê outlook.
>
> 2) ìâìðë ð÷ñåìæ (username) ïâäð õðÿäâþâæû ê þ ìâìðë ÷âÿå, àæð÷ý òðæðî îðãïð ÷ýíð ïâ ïåúð òôðòêõâæû þ slapd.conf acl ïâ òðäð÷êå:
>
>
> access to dn=".*,ou=addressbook,o=firma"
> by uid=reader,ou=users,o=firma read
> by uid=writer,ou=users,o=firma write
> by * none
>
> reader ê writer õðÿäâþâí, ìâì ð÷ñåìæ person.
> òâôðíû êî òðõæâþêí simple.
>
> ×ðíûùå âìíðþ þ ìðïöêúå ïåæ.
>
> Òðìâ àæð è îåïó ïêìæð, ìôðîå rootdn, âþæðôêÿâçêá òôðëæê ïå îðãåæ.
> Òôêàåî îðíàâ. Ïêìâìêé ðùê÷ðì ïê ïâ õåôþåôå, ïê ïâ ìíêåïæå.
>
>
>
>
>
>
>
>
>
> --
> Íá÷êîðþ Âíåìõåë
> avl ÎÁ l14.ru
> _______________________________________________
> Community mailing list
> Community ÎÁ altlinux.ru
> http://www.altlinux.ru/mailman/listinfo/community
>
less /etc/openldap/ldap.conf:
skip ...
pam_filter objectclass=account
pam_login_attribute=uid
pam_template_login_attribute uid
pam_template_login nobody
nss_base_passwd ou=Peoples,o=meatkomb,c=ua?one
nss_base_shadow ou=Peoples,o=meatkomb,c=ua?one
nss_base_group ou=Groups,o=meatkomb,c=ua?one
???
Serj.
ðÏÄÒÏÂÎÁÑ ÉÎÆÏÒÍÁÃÉÑ Ï ÓÐÉÓËÅ ÒÁÓÓÙÌËÉ community