Tutorial: Setup OpenLDAP and configure clients
Вставка
- Опубліковано 5 гру 2015
- !!DISCLAIMER!! This video is outdated concerning modern security standards. The matter discussed in this video isn't part of my daily knowledge anymore. Questions about this topic will most likely not be answered by myself but hopefully by others :)
-------------------------------------------------------------------------------------------------------
This tutorial shows you how to setup an OpenLDAP server on a Debian machine and how to configure your clients so they connect to your LDAP server
Great tutorial, keep up the good work!
Nice and clean! Great Work!
Great tutorial!
clear and easy to follow
funke fjell! Wasn't able to connect to the web-client at first. Restarted the ldap server and ez pz fix.
very nice and clear. thanks
Thanks! Glad I could help you out :)
nice vid man.
Thanks for the video, very clear. So if then i would like to authenticate a windows client, i read on the net, i've been told to use Samba server integrated to ldap. But up to now i've not find something interesting at all. Cn you help me please?
I'm getting permission denied while logging for user in client using ssh. I thing this is happening due to another problem. I'm getting some error while checking status of nscd and that is smthng about ldap server is not connected or not reachable to the ldap server. So do you have any solution for this??? Even if i'm just following your steps. My ldap server status is fine i.e. properly working and there is no problem between server and client connection.
hey can you please a share document with the steps . thank you
In client config local root must by ? Can you tell me this config work without this ? This need preparing second account special root acount.Is it posible conf client without this account included on client config ?
i have followed all the steps but in the end i can't be authenticated :(
I ran into the same error listed in all the other comments... Everything looks great until attempting to authenticate with the LDAP server, I get permission denied. After several hours I ran across my fix. Examining the /etc/ldap.conf file I noticed the entry "uri ldapi://10.10.1.171:389/" , I removed the "i" from the "ldap" portion of the statement and ran the command "getent passwd" and my ldap users popped in along with all the local users. I was then able to authenticate against my LDAP server. Hope this helps....
Scooby Ghost you're officially my hero, I spent two weeks doing this and other tutorials over and over in case I missed something, that single "i" was causing the issue the whole time.
Thanks bro.....
thaaaank u
is it possible to do it on windows 10 ?
awesome
So, you can actually login in the GUI allow or only via Terminal?
That's my question too. Akin to Windows, like when a user sits down at the machine to login, will they need to enter these credentials and login in just fine?
Premission denied
help
tax it was very helpful
Hi, Can you help me with this. I have installed openLDAP on my Ubuntu 16.04 wth phpldapadmin (for GUI access). I want to connect my windows machines to the Ubuntu domain. Can someone suggest me any ideas? The LDAP should authenticate any LDAP users over the windows machines
In this case I suggest you to convert to Windows AD. In my experience, Linux LDAP and Windows clients aren't always a good match. Windows Active Directory gives you more possibilities to manage Windows Clients.
Sorry, we already have this setup online. But the Ubuntu version is 8.X version, we want to update the entire setup. The person who configured it earlier, no longer with us. So trying to implement this model to have the latest setup.
did u find the solution? siva im trying to connect windows client to linux ldap.
@@tulgaa1114 It's been a long time. I remember trying with Samba4 & it was meeting the expectations. You can try exploring it.
can i have pdf file of this tutorial?
Sorry, I'm not going to type the tutorial out due to lack of time.
Two thoughts:
* Letting local roots be LDAP admins is not a good idea. One machine taken over, your whole system is taken over.
* Did I miss it or is your LDAP setup completely unencrypted? Check your network interface with e.g. wireshark and read all the plain text passwords.
@
enter password:
permission denied, please try again.
Waar ligt dit aan?
Hi, sorry for the late answer.
Is the user in the right group? The group where the user is in needs permissions to log in to the specific machine.
If you follow the guide step by step, you shouldn't have the permission error.
Hi. I'm also getting this error and I followed your tutorial step by step. I even created a Debian OpenLDAP server and Ubuntu client. I put my user in the admin group as in the tutorial. Do I have to do anything in the client so that I can test SSH?
Christian Palacios Hi, did you check your sshd_conf file? Password authorization yes
Hi. Yup, just checked sshd_config and it's set to yes.
Actually, I wonder if I did something dumb. When I was creating the Organization Units, I created them as "Users" and "Groups", with a capital letter. Could that be the problem?
cant even see what you are writing how can it be clear?
The quality of the video goes up to 1080p60 which should make the text clear :)
OK thanks will check it out