{"id":97,"date":"2002-12-10T12:00:38","date_gmt":"2002-12-10T09:00:38","guid":{"rendered":"https:\/\/mamchenkov.net\/wordpress\/?p=97"},"modified":"2002-12-10T12:00:38","modified_gmt":"2002-12-10T09:00:38","slug":"ldap-confusion","status":"publish","type":"post","link":"https:\/\/mamchenkov.net\/wordpress\/2002\/12\/10\/ldap-confusion\/","title":{"rendered":"LDAP confusion"},"content":{"rendered":"<!-- google_ad_section_start -->\n<p>More reading about LDAP, directory services and the like. While everything is so beautiful according to all documentation, noone cares to actually explain some concepts. We do have OpenLDAP up and running for simple things like global addressbook. Now, how do I give different people different access on different machines? Sudo is good. Sudo is working. But I do have a problem figuring out how to give person A access to host A with ssh, and person B access to host B with ssh and ftp. Whatever I do ends up either in the land of perl scripts or in the land of LDAP aliases, which don&#8217;t work with all the versions of both LDAP and Berkley DB.<\/p>\n<!-- google_ad_section_end -->\n","protected":false},"excerpt":{"rendered":"<!-- google_ad_section_start -->\n<p>More reading about LDAP, directory services and the like. While everything is so beautiful according to all documentation, noone cares to actually explain some concepts. We do have OpenLDAP up and running for simple things like global addressbook. Now, how do I give different people different access on different machines? Sudo is good. Sudo is &hellip; <a href=\"https:\/\/mamchenkov.net\/wordpress\/2002\/12\/10\/ldap-confusion\/\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">LDAP confusion<\/span><\/a><\/p>\n<!-- google_ad_section_end -->\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"_links_to":"","_links_to_target":""},"categories":[1,62],"tags":[],"keyring_services":[],"class_list":["post-97","post","type-post","status-publish","format-standard","hentry","category-general","category-technology"],"aioseo_notices":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":5,"url":"https:\/\/mamchenkov.net\/wordpress\/2001\/11\/08\/first-ldap-encounter\/","url_meta":{"origin":97,"position":0},"title":"First LDAP encounter","author":"Leonid Mamchenkov","date":"November 8, 2001","format":false,"excerpt":"I have started to learn LDAP today. Here is how I did it: Install new Red Hat Linux 7.2 server. During install Specify to authenticate through LDAP which is located at 127.0.0.1 I forgot to permit SSH connection during firewall configuration In boot manager configuration, I have specified to use\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":95,"url":"https:\/\/mamchenkov.net\/wordpress\/2002\/12\/06\/autofs-and-ldap\/","url_meta":{"origin":97,"position":1},"title":"Autofs and LDAP","author":"Leonid Mamchenkov","date":"December 6, 2002","format":false,"excerpt":"Autofs with LDAP IS problematic. I've switched to mounting \/home directory upon host bootup. Looks simplier and more stable.","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":7379,"url":"https:\/\/mamchenkov.net\/wordpress\/2004\/03\/23\/how-can-i-configure-mutt-to-use-addresses-from-ldap-addressbook\/","url_meta":{"origin":97,"position":2},"title":"How can I configure mutt to use addresses from LDAP addressbook?","author":"Leonid Mamchenkov","date":"March 23, 2004","format":false,"excerpt":"\"mutt ldap address\" \".muttrc ldap address\" \"mutt ldap\" \"ldap script for mutt\" \"ms exchange directory\" You will need to download one of the LDAP querying scripts for mutt. One of them is here. After downloading, edit the script to match your LDAP server and put lines like set query_command=\"\/home\/username\/bin\/mutt-ldap.pl '%s'\"\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":98,"url":"https:\/\/mamchenkov.net\/wordpress\/2002\/12\/12\/more-ldap\/","url_meta":{"origin":97,"position":3},"title":"More LDAP","author":"Leonid Mamchenkov","date":"December 12, 2002","format":false,"excerpt":"Yet more reading about LDAP and directory services...","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":115,"url":"https:\/\/mamchenkov.net\/wordpress\/2003\/01\/13\/kerberos-and-ldap\/","url_meta":{"origin":97,"position":4},"title":"Kerberos and LDAP","author":"Leonid Mamchenkov","date":"January 13, 2003","format":false,"excerpt":"Lots of Kerberos V reading and playing with. Some Kerberos and LDAP reading and playing with. Most of it is documented now (DocBook ownz). :)","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":6,"url":"https:\/\/mamchenkov.net\/wordpress\/2001\/11\/09\/microsoft-ldap\/","url_meta":{"origin":97,"position":5},"title":"Microsoft LDAP","author":"Leonid Mamchenkov","date":"November 9, 2001","format":false,"excerpt":"LDAP saga continues... Finally I have found something that Microsoft did actually good. I have found out that ldifde.exe -f myfile.ldf will export the whole Active Directory structure into myfile.ldf file in LDIF file format (human readable). That is extremely usefull when migrating I have also found Exchange-HOWTO an interesting\u2026","rel":"","context":"In &quot;All&quot;","block_context":{"text":"All","link":"https:\/\/mamchenkov.net\/wordpress\/category\/general\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"jetpack_sharing_enabled":true,"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/posts\/97","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/comments?post=97"}],"version-history":[{"count":0,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/posts\/97\/revisions"}],"wp:attachment":[{"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/media?parent=97"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/categories?post=97"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/tags?post=97"},{"taxonomy":"keyring_services","embeddable":true,"href":"https:\/\/mamchenkov.net\/wordpress\/wp-json\/wp\/v2\/keyring_services?post=97"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}