[389-users] AIX

Dan Lavu dan at lavu.net
Thu May 23 12:50:11 UTC 2013 

I went ahead and modified /etc/security/ldap/ldap.cfg directly 
	*Note* Any passwords you use, MUST BE HASHED using mksecldap or some obscure command like that

There is /var/lib/security/method.cfg which defines LDAP, make sure your module is in there, you can create your own modules if you want to, i.e. AUTH against KRB and find your user base in LDAP… but unlike nsswitch it does not determine a priority it just says modules are here. 

Lastly /etc/security/user, you need to change two args, SYSTEM (auth if you are familiar with pam) and registry (account) and point to the method in methods.cfg 

If you are using SSL which you should, you need to create the cert db using some obscure gui command. 

I essentially followed the IPA instructions and omitted the krb5 settings. 

http://www.freeipa.org/page/ConfiguringAixClients

Hope this helps.




On May 23, 2013, at 6:54 AM, Dan Lavu <dan at lavu.net> wrote:

> Are you still having issues with this? I just setup my first AIX client yesterday. 
> 
> On Apr 16, 2013, at 2:35 AM, alexandre <axel0felix at gmail.com> wrote:
> 
>> Hi Paul,
>> 
>> do you know the AIX client configuration to use with 389DS ?
>> 
>> Thanks,
>> Alex 
>> 
>> 
>> 2013/4/15 Paul Robert Marino <prmarino1 at gmail.com>
>> Its been a long time since I used an AIX box but I don't think AIX uses Pam, so it would be different, that said it should be possible but I'm not sure of the details on how to set it up. Worse come to worse look at some of the old sun one and Netscape docs they would cover AIX clients and should be at least mostly still accurate.
>> 
>> 
>> -- Sent from my HP Pre3
>> 
>> On Apr 15, 2013 10:58 AM, alexandre <axel0felix at gmail.com> wrote: 
>> 
>> Hello,
>> 
>> just to know if somebody try to use an AIX client against 389DS ?
>> 
>> I know it's possible with Solaris. It is the same way to use AIX client (nsswitch.conf and pam configuration)?
>> 
>> Best regards,
>> Alex
>> 
>> --
>> 389 users mailing list
>> 389-users at lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/389-users
>> 
>> --
>> 389 users mailing list
>> 389-users at lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/389-users
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20130523/00f8a9f3/attachment.html>

More information about the 389-users mailing list