On Thu, 29 Oct 2009 03:04:27 +0000, Ben Johnston wrote:
> With PAM using ldap authentication, do I need to then create an edir
> account called root? Or will the PAM module first look for an account on
> the local server before trying ldap?
That's up to your PAM configuration. I believe the normal way to do this
is to exclude root and other important local users.
> for the sudo part, would somehow syncing a local linux group with an
> ldap group work? We run IDM 3.5.1. which I though could do something
> like this.
Sure, that should work if you can't convince SUDO to look at LDAP
provided groups.
--
---------------------------------------------------------------------------
David Gersic
dgersic_@_niu.edu
Novell Knowledge Partner
http://forums.novell.com
Please post questions in the newsgroups. No support provided via email.
Re: OES2/SLES server edir authentication for local/ssh logins
Threaded Mode
