Using Rasbian 20-12-2013 with updates
Install libnss-ldap
apt-get install libnss-ldap
Once complete you’ll be prompted for ldap details
ldap server e.g ldap://192.168.1.3/ ldap://192.168.1.2/ base dn e.g dc=system,dc=local ldap version e.g 3 Does LDAP require login e.g No Special LDAP privileges for Root e.g No
Once you’ve given the ldap details you need to update nsswitch.conf
nano -w /etc/nsswitch.conf
Previous config:
passwd: compat group: compat shadow: compat hosts: files dns networks: files protocols: db files services: db files ethers: db files rpc: db files netgroup: nis
New config:
#passwd: compat passwd: files ldap #group: compat group: files ldap #shadow: compat shadow: files ldap hosts: files dns networks: files protocols: db files services: db files ethers: db files rpc: db files netgroup: nis
Then we add the following so that home directories are automatically created
nano -w /usr/share/pam-configs/my_mkhomedir
Name: activate mkhomedir Default: yes Priority: 900 Session-Type: Additional Session: required pam_mkhomedir.so umask=0022 skel=/etc/skel
Apply the above using
pam-auth-update
To make sure everything is applied and the cache daemon doesn’t screw about I reboot. Once reboot login worked fine. A few commands that can help see what’s happening
getent passwd getent group tail /var/log/auth.log