I went ahead and modified /etc/security/ldap/ldap.cfg directly
*Note* Any passwords you use, MUST BE HASHED using mksecldap or some obscure command like
that
There is /var/lib/security/method.cfg which defines LDAP, make sure your module is in
there, you can create your own modules if you want to, i.e. AUTH against KRB and find your
user base in LDAP… but unlike nsswitch it does not determine a priority it just says
modules are here.
Lastly /etc/security/user, you need to change two args, SYSTEM (auth if you are familiar
with pam) and registry (account) and point to the method in methods.cfg
If you are using SSL which you should, you need to create the cert db using some obscure
gui command.
I essentially followed the IPA instructions and omitted the krb5 settings.
http://www.freeipa.org/page/ConfiguringAixClients
Hope this helps.
On May 23, 2013, at 6:54 AM, Dan Lavu <dan(a)lavu.net> wrote:
Are you still having issues with this? I just setup my first AIX
client yesterday.
On Apr 16, 2013, at 2:35 AM, alexandre <axel0felix(a)gmail.com> wrote:
> Hi Paul,
>
> do you know the AIX client configuration to use with 389DS ?
>
> Thanks,
> Alex
>
>
> 2013/4/15 Paul Robert Marino <prmarino1(a)gmail.com>
> Its been a long time since I used an AIX box but I don't think AIX uses Pam, so
it would be different, that said it should be possible but I'm not sure of the details
on how to set it up. Worse come to worse look at some of the old sun one and Netscape docs
they would cover AIX clients and should be at least mostly still accurate.
>
>
> -- Sent from my HP Pre3
>
> On Apr 15, 2013 10:58 AM, alexandre <axel0felix(a)gmail.com> wrote:
>
> Hello,
>
> just to know if somebody try to use an AIX client against 389DS ?
>
> I know it's possible with Solaris. It is the same way to use AIX client
(nsswitch.conf and pam configuration)?
>
> Best regards,
> Alex
>
> --
> 389 users mailing list
> 389-users(a)lists.fedoraproject.org
>
https://admin.fedoraproject.org/mailman/listinfo/389-users
>
> --
> 389 users mailing list
> 389-users(a)lists.fedoraproject.org
>
https://admin.fedoraproject.org/mailman/listinfo/389-users