1.

Using PAM for authentication On Linux platforms, PAM is the sole authentication method used for running the PA. The service name used by PA when the PAM interface is initialised is netcool. Copy /etc/pam.d/passwd to /etc/pam.d/netcool [root@oss-srv-nccol-01 pam.d]# cat /etc/pam.d/passwd
#%PAM-1.0 auth required pam_stack.so service=system-auth account required pam_stack.so service=system-auth password required pam_stack.so service=system-auth

2. Configure Object server to user PAM for authentication Copy /etc/pam.dsystem-auth to /etc/pam.d/nco_objserv [root@oss-srv-nccol-01 pam.d]# cat /etc/pam.d/nco_objserv
#%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. auth required /lib/security/pam_ldap.so account required /lib/security/pam_ldap.so password required /lib/security/pam_ldap.so

3. LDAP configuration file Cat /etc/pam.d
host 139.188.98.34 base OU=Lucent Users, DC=Sydney, DC=gnoc, DC=lucent, DC=com binddn cn=ldapsydney,OU=Lucent Users, DC=Sydney, DC=gnoc, DC=lucent, DC=com bindpw gnoc+123 port 389 timelimit 120 bind_timelimit 120 idle_timelimit 3600 pam_login_attribute cn sasl_secprops maxssf=0 ssl no tls_cacertdir /etc/openldap/cacerts

How to check the ldap server:
ldapsearch -x -D "CN=ldapsydney,OU=Lucent Users, DC=Sydney, DC=gnoc, DC=lucent, DC=com" -w gnoc+123 -b "OU=Lucent Users, DC=Sydney, DC=gnoc, DC=lucent, DC=com" -h 139.188.98.34 "cn=binoy"

Sign up to vote on this title
UsefulNot useful