Re: LDAP replacing NIS...?

From: LDC - Pablo Endres Lozada (epablo@ldc.usb.ve)
Date: 01/29/03

  • Next message: Hal Flynn: "Administrivia: Please trim replies" 
    Date: Wed, 29 Jan 2003 03:16:52 -0400 (VET)
From: LDC - Pablo Endres Lozada <epablo@ldc.usb.ve>
To: Gregory Hicks <ghicks@cadence.com>

            What LDAP server are you using?

            I've done it using OpenLDAP. You need to patch the server
            with a patch you can find in ldc.usb.ve/ldap

            There you can allso find the schema's you need to import
            and a base ldif

            You can follow the how-to in yppass.net but don't forget
            the patch or it won't work.
            If you have Iplanet it works following sun's directions:
            look for the handbook on the web

            Good luck.

    On Tue, 28 Jan 2003, Gregory Hicks wrote:

    >
    > I have the unenviable task of figuring out how, in a mostly Sun
    > environment, to use LDAP to replace all NIS maps.
    >
    > We are already using LDAP to maintain hosts, passwd, and group with
    > networks, services, et al to follow in the near future. This however,
    > just replaces vi with the LDAP db modifying calls.
    >
    > Is there a method of having NIS query LDAP directly?
    >
    > Has anyone tried to use LDAP to replace the NIS passwd (also hosts,
    > group, aliases, et al)? We have converted a system to using LDAP
    > queries to authenticate users working, but once we changed to LDAP,
    > users can no longer login to their CDE desktop.
    >
    > Given a mix of SunOS 4.x, Solaris 2.5, 2.5.1, 2.6, 7-9, is there a
    > really good method to make the switch? Or are we, for the near term,
    > going to be maintaining the maps in LDAP and periodically 'pushing' the
    > source maps to the remote NIS masters?
    >
    > Or is this a truly LONG TERM project (3-6 years)
    >
    > (I also have to make HP-UX, AIX, and Linux fit this same model, but
    > this is not the right forum for these OSes...)
    >
    > Any pointers, advice, will be appreciated.
    >
    > Regards,
    > Gregory Hicks
    >
    > -------------------------------------------------------------------
    > Gregory Hicks | Principal Systems Engineer
    > Cadence Design Systems | Direct: 408.576.3609
    > 555 River Oaks Pkwy M/S 6B1 | Fax: 408.894.3400
    > San Jose, CA 95134 | Internet: ghicks@cadence.com
    >
    > "The trouble with doing anything right the first time is that nobody
    > appreciates how difficult it was."
    >
    > When a team of dedicated individuals makes a commitment to act as
    > one... the sky's the limit.
    >
    > "There is no limit to what a man can do or how far he can go if he
    > doesn't mind who gets the credit." - Robert Woodruff
    >
    > 

    -- 
		Muchas personas creen que piensan,
		cuando en realidad sólo están reordenando sus
		prejuicios.
					- William James
 
       .-----------------------------------------------------------------.
      /  .-.               Pablo Endres Lozada                        .-.  \
     |  /   \       Laboratorio Docente de Computacion              /   \  |
     | |\_.  |                USB - Venezuela                      |    /| |
     |\|  | /|                                                     |\  | |/|
     | `---' |               epablo@ldc.usb.ve                     | `---' |
     |       |                                                     |       | 
     |       |-----------------------------------------------------|       |
     \       |                                                     |       /
      \     /                                                       \     /
       `---'                                                         `---'

    Relevant Pages