Todo

Authentication using LDAP - RedHat 8.0 Clients

Fig 1: Authentication configuration
In this case use the GUI that comes with RedHat 8.O

From the Redhat menu choose System Settings --> Authentication.

You are prompted for the root password. This opens up the Authentication Configuration screen (Fig 1).

Select the tick box "Enable LDAP Support" and click the button "Configure LDAP".

Fig 2: LDAP Settings

This brings up the LDAP Settings screen (Fig 2). This is where you tell the client computer where the LDAP server is and the search base to use.

The search base is fundamental to the design of the LDAP server. Every record has a Distinquished Name (DN) that uniquely identifies it (cf primary key). Part of each DN is the base. There can be numerous search bases in the one LDAP server The careful use of search bases allows the creation of an hierarchical structure within the LDAP server. You are defining where in the LDAP server to begin searching. Your search base will probably be in the form "dc=yourorg,dc=com".

The 'LDAP server' field is the IP address or DNS name of the LDAP server. If the LDAP server is not using the standard port (389), you will need to add the port number to the addresss separated by a ':', i.e ldapserver.yourorg.com:1234

The tick box 'Use TLS to encrypt connections', refers to Transport Layer Security. This will need to be set up on the LDAP server before you can use TLS.

Click OK

You should now be able to login as one of the LDAP users - but that is only half the story. Where is their home directory? How is the remote computer mounted on the local directory structure?


Author: Lance Rathbone
Last modified: Wednesday June 18, 2008

Home