[OpenAFS] LDAP and Krb5 and OpenAFS - problem?

Chris Huebsch chris.huebsch@informatik.tu-chemnitz.de
Thu, 23 Jun 2005 13:12:32 +0200 (CEST)


On Thu, 23 Jun 2005, Lars Schimmer wrote:

> Are there any errors to expect? E.G. passwords - while user can change there
> passwords on Krb5 the passwords are not changed in ldap  - user with 2 passwd
> could login. I think I have to disable passwords via ldap.

Don't use LDAP for password-checks. Leave the password-field empty.

Keep the afsuid in sync with the ldap uidNumber.

Perhaps you want to read this (but it's only afskrb4)

http://www-user.tu-chemnitz.de/~chu/papers/afs_ldap.pdf (in German)

Chris Huebsch    www.huebsch-gemacht.de | TU Chemmnitz, Informatik, RNVS
GPG-Encrypted mail welcome! ID:7F2B4DBA |   Str. d. Nationen 62, B204
  Chemnitzer Linux-Tage 2006, 4.-5.Maerz |       D-09107 Chemnitz
     http://chemnitzer.linux-tage.de/    |  +49 371 531-1377, Fax -1803