From: webserv@s3group.com
To: Ian Kent <raven@themaw.net>
Cc: "autofs@linux.kernel.org" <autofs@linux.kernel.org>
Subject: Re: auto.master in ldap + simple bind
Date: Sun, 18 Jan 2009 19:01:46 -0000 (GMT) [thread overview]
Message-ID: <4608.82.208.2.231.1232305306.squirrel@webmail.s3group.com> (raw)
In-Reply-To: <1232168581.3072.0.camel@zeus.themaw.net>
Hi Ian,
I tried that already, also played with several authtypes and still no joy.
So I enabled autofs debugging and saw that no matter what I try,
automounter tries to bind anonymously - that fails with AD. I need to bind
using the proxy user...
Thanks,
Ondrej
> On Sat, 2009-01-17 at 01:12 +0900, Ian Kent wrote:
>> On Fri, 2009-01-16 at 15:54 +0100, Ondrej Valousek wrote:
>> > Hi all,
>> > I am trying to configure autofs (RHEL 5.2) to gather all maps from
>> > Active Directory using simple bind using proxy user.
>> > I have already managed to configure the PADL nss switch to do so using
>> this:
>> >
>> > host 192.168.60.172
>> > base dc=ad,dc=s3group,dc=cz
>> > binddn cn=ldapproxy,cn=Users,dc=ad,dc=s3group,dc=cz
>> > bindpw password
>> >
>> > Now I am wondering how to do the same with the automounter. Does
>> anyone
>> > know?
>> > I see lots of options on how to configure TLS or SASL, but I just need
>> a
>> > simple bind.
>>
>> This might work.
>>
>> authrequired="yes"
>> user="cn=ldapproxy,cn=Users,dc=ad,dc=s3group,dc=cz"
>> secret="password"
>>
>> You might also need to play with authtype.
>
> Of course that's contained in /etc/autofs_ldap_auth.conf
>
>>
>> Ian
>>
>>
>> _______________________________________________
>> autofs mailing list
>> autofs@linux.kernel.org
>> http://linux.kernel.org/mailman/listinfo/autofs
>
>
The information contained in this e-mail and in any attachments is confidential and is designated solely for the attention of the intended recipient(s). If you are not an intended recipient, you must not use, disclose, copy, distribute or retain this e-mail or any part thereof. If you have received this e-mail in error, please notify the sender by return e-mail and delete all copies of this e-mail from your computer system(s).
Please direct any additional queries to: communications@s3group.com.
Thank You.
Silicon and Software Systems Limited. Registered in Ireland no. 378073.
Registered Office: South County Business Park, Leopardstown, Dublin 18
next prev parent reply other threads:[~2009-01-18 19:01 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-01-16 14:54 auto.master in ldap + simple bind Ondrej Valousek
2009-01-16 16:12 ` Ian Kent
2009-01-17 5:03 ` Ian Kent
2009-01-18 19:01 ` webserv [this message]
2009-01-19 2:42 ` Ian Kent
2009-01-19 11:26 ` Ondrej Valousek
2009-01-21 9:36 ` Ondrej Valousek
2009-01-21 13:03 ` Ian Kent
2009-01-21 13:11 ` Ondrej Valousek
2009-01-21 13:22 ` Ian Kent
2009-01-21 13:29 ` Ondrej Valousek
2009-01-21 13:49 ` Ian Kent
2009-01-21 13:52 ` Ondrej Valousek
2009-01-21 15:51 ` Ian Kent
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4608.82.208.2.231.1232305306.squirrel@webmail.s3group.com \
--to=webserv@s3group.com \
--cc=autofs@linux.kernel.org \
--cc=raven@themaw.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.