[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Solaris 10 Native Client connecting to OpenLdap How to needed
Hi, I manage an OpenLDAP environment consisting of Linux, Solaris and AIX.
Here is the Schema I use for Solaris 10.
Hope this helps.
# Sun nisMapEntry attributes
attributetype ( 1.3.6.1.1.1.1.28
NAME 'nisPublickey'
DESC 'nisPublickey'
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 1.3.6.1.1.1.1.29
NAME 'nisSecretkey'
DESC 'nisSecretkey'
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 1.3.6.1.4.1.1.1.1.12 SUP name
NAME 'nisDomain' )
# Sun additional attributes to RFC2307 attributes (NIS)
attributetype ( 2.16.840.1.113730.3.1.30
NAME 'mgrpRFC822MailMember'
DESC 'mgrpRFC822MailMember'
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
#attributetype ( 1.3.6.1.4.1.42.2.27.2.1.15
# NAME 'rfc822MailMember'
# DESC 'rfc822MailMember'
# EQUALITY caseIgnoreIA5Match
# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 1.3.6.1.4.1.42.2.27.1.1.12
NAME 'nisNetIdUser'
DESC 'nisNetIdUser'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 1.3.6.1.4.1.42.2.27.1.1.13
NAME 'nisNetIdGroup'
DESC 'nisNetIdGroup'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
attributetype ( 1.3.6.1.4.1.42.2.27.1.1.14
NAME 'nisNetIdHost'
DESC 'nisNetIdHost'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
# Sun NIS publickey objectclass
objectclass ( 1.3.6.1.1.1.2.14
NAME 'NisKeyObject'
DESC 'NisKeyObject'
SUP top
MUST ( cn $ nisPublickey $ nisSecretkey )
MAY ( uidNumber $ description ) )
# Sun NIS domain objectclass
objectclass ( 1.3.1.6.1.1.1.2.15
NAME 'nisDomainObject'
DESC 'nisDomainObject'
SUP top AUXILIARY
MUST ( nisDomain ) )
# Sun NIS mailGroup objectclass
objectclass ( 2.16.840.1.113730.3.2.4
NAME 'mailGroup'
DESC 'mailGroup'
SUP top
MUST ( mail )
MAY ( cn $ mgrpRFC822MailMember ) )
# Sun NIS nisMailAlias objectclass
#objectclass ( 1.3.6.1.4.1.42.2.27.1.2.5
# NAME 'nisMailAlias'
# DESC 'nisMailAlias'
# SUP top
# MUST ( cn )
# MAY ( rfc822mailMember ) )
# Sun NIS nisNetId objectclass
objectclass ( 1.3.6.1.4.1.42.2.27.1.2.6
NAME 'nisNetId'
DESC 'nisNetId'
SUP top
MUST ( cn )
MAY ( nisNetIdUser $ nisNetIdGroup $ nisNetIdHost ) )
# Below is optional unless you want to use ldap_gen_profile
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.15 SUP name
NAME 'SolarisLDAPServers'
DESC 'SolarisLDAPServers'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.16 SUP name
NAME 'SolarisSearchBaseDN'
DESC 'SolarisSearchBaseDN'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.17
NAME 'SolarisCacheTTL'
DESC 'SolarisCacheTTL'
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.18 SUP name
NAME 'SolarisBindDN'
DESC 'SolarisBindDN'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.19 SUP name
NAME 'SolarisBindPassword'
DESC 'SolarisBindPassword'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.20 SUP name
NAME 'SolarisAuthMethod'
DESC 'SolarisAuthMethod'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.21 SUP name
NAME 'SolarisTransportSecurity'
DESC 'SolarisTransportSecurity'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.24 SUP name
NAME 'SolarisDataSearchDN'
DESC 'SolarisDataSearchDN'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.25 SUP name
NAME 'SolarisSearchScope'
DESC 'SolarisSearchScope'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.26
NAME 'SolarisSearchTimeLimit'
DESC 'SolarisSearchTimeLimit'
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.27 SUP name
NAME 'SolarisPreferedServer'
DESC 'SolarisPreferedServer' )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.28 SUP name
NAME 'SolarisPreferedServerOnly'
DESC 'SolarisPreferedServerOnly'
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.42.2.27.5.1.29 SUP name
NAME 'SolarisSearchReferral'
DESC 'SolarisSearchReferral'
SINGLE-VALUE )
objectclass ( 1.3.6.1.4.1.42.2.27.5.2.7
NAME 'SolarisNamingProfile'
DESC 'Solaris LDAP NSS Profile'
SUP top STRUCTURAL
MUST ( cn $ SolarisLDAPServers )
MAY ( SolarisBindDN $ SolarisBindPassword $
SolarisSearchBaseDN $ SolarisAuthMethod $
SolarisTransportSecurity $ SolarisSearchReferral $
SolarisDataSearchDN $ SolarisSearchScope $
SolarisSearchTimeLimit $ SolarisCacheTTL ) )
# End of solaris.schema
> I am working on getting a bunch of Solaris 10 hosts connected to OpenLdap.
> I am not Ldap expert by far however I must get this working.
>
> I have 0 issues getting Linux clients to connect but Solaris 10 how to's
> docs are very evasive.
>
> I have searched everywhere the best I can find is a few online docs that
> say you need to load a custom schema.
>
> I just need user / passwd authentication to a directory nothing more. Will
> not be using TLS..
>
-----------------------
Adam Nye
Spoon Technologies
PO Box 15
O'Halloran Hill
-----------------------