SUMMARY: LDAP lookups for user/acct info

From: Dave Zwieback (
Date: Wed Feb 18 1998 - 09:05:09 CST


The original question was:
Has anyone gotten Solaris to work with LDAP? That is, to store all the
passwd/group info in LDAP, and have Solaris refer to it? Any suggestions on
how to get this to work, in practice?

The answers were:

Daniel J. Gregor Jr., <>:

        Check out the attached message. I've used this NSS module for
LDAP on a Solaris 2.5.1 box, and it works fine. It is missing performance
enhancements, but that wasn't a major problem for me. The biggest "bug"
that you might have is that if you use it for authenticating users, they
will no longer be able to change their password with the standard Solaris
passwd program, because it doen't know how to deal with LDAP. You'll
either have to make all the users change their password some other way,
or find or write a password program that can work with LDAP.

A new release of nss_ldap is available from:

This version is compatible with the new hosts and networks schema in
draft-howard-nis-schema-02.txt, to be published shortly.


David Wolfskill <>

Robert Harker gave a talk at BayLISA a few months ago on LDAP & sendmail
interaction. There should be some information on what he said & what
he's figured out since at


Robert Bannocks <>

You will need either the ldap pam module for 2.6 or the NSS module for solaris before 2.6. I have tried the pam module and it works. However, note it works in a diffrent way to the nss module.

look at for pam. Most of the pam modules will compile under solaris as well as Linux.


Thanks to all who contributed!


This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:12:31 CDT