1: 2011-01-07 (金) 02:21:04 maruo[4] [5] | 現: 2011-01-07 (金) 02:21:35 maruo[4] [6] | ||
---|---|---|---|
Line 13: | Line 13: | ||
uri ldap://foo.example.com | uri ldap://foo.example.com | ||
base dc=example,dc=com | base dc=example,dc=com | ||
+ | |||
ldap_version 3 | ldap_version 3 | ||
ssl start_tls | ssl start_tls | ||
+ | |||
binddn cn=syncuser,dc=example,dc=com | binddn cn=syncuser,dc=example,dc=com | ||
bindpw secret | bindpw secret | ||
+ | |||
scope sub | scope sub | ||
bind_policy soft | bind_policy soft | ||
- | + | ||
pam_password exop | pam_password exop | ||
+ | |||
pam_filter objectclass=posixAccount | pam_filter objectclass=posixAccount | ||
pam_login_attribute uid | pam_login_attribute uid | ||
pam_member_attribute memberUid | pam_member_attribute memberUid | ||
pam_check_host_attr yes | pam_check_host_attr yes | ||
+ | |||
nss_base_passwd ou=People,dc=example,dc=com | nss_base_passwd ou=People,dc=example,dc=com | ||
nss_base_shadow ou=People,dc=example,dc=com | nss_base_shadow ou=People,dc=example,dc=com | ||
Line 58: | Line 57: | ||
auth sufficient pam_ldap.so use_first_pass | auth sufficient pam_ldap.so use_first_pass | ||
auth required pam_deny.so | auth required pam_deny.so | ||
+ | |||
account sufficient pam_ldap.so | account sufficient pam_ldap.so | ||
account required pam_unix.so | account required pam_unix.so | ||
+ | |||
password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3 | password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3 | ||
password sufficient pam_unix.so try_first_pass use_authtok nullok sha512 shadow | password sufficient pam_unix.so try_first_pass use_authtok nullok sha512 shadow | ||
password sufficient pam_ldap.so use_authtok use_first_pass | password sufficient pam_ldap.so use_authtok use_first_pass | ||
password required pam_deny.so | password required pam_deny.so | ||
+ | |||
session required pam_limits.so | session required pam_limits.so | ||
session required pam_env.so | session required pam_env.so |
(This host) = https://femt.ddo.jp