On 7 February 2013 18:40, David Walser <[email protected]> wrote: >> > Is nss_ldap in the non-building package list, or is it deprecated and >> > there is now another method to use ldap for authentication ? >> I can't say anything about the lack of nss_ldap now, but they are two >> alternatives methods to replace the usual pam_ldap/nss_ldap duos, that >> ought to be investigated: >> - nss-pam-ldapd >> - sssd >> >> The first one is more inline with previous usages, the second one seems >> far more invasive at first sight. > > Zombie Ryoshu told me on IRC that nss_ldap is deprecated and nss-pam-ldapd > should be used now. He also said that the nslcd service (similar to nscd) > should be running for nss-pam-ldapd to work.
good luck with nslcd (if you use TLS you'll have to tell SELinux about it), ... I advise you sssd, it just work directly, one single config file to write for both PAM & NSS...
