Subject: Re: LDAP NSS for NetBSD (old)
To: Brian A. Seklecki <>
From: Jean-Luc Wasmer <>
List: tech-userlevel
Date: 10/12/2005 09:38:37
Brian A. Seklecki wrote:

>Let me know if you can get the "require group membership" feature
>working.  I have some not-so-delicate words I shared with the
>PADL/FreeBSD people on this.
Are you referring to the pam_groupdn and pam_member_attribute 
configuration options?
I haven't tried these.

>Also, let me know if you can get ldap_nss/ldap_pam to place gracefully
>with sudo(8), sshd(8), etc.
I don't have sudo on my systems. Ssh, su, imap, pop, passwd work fine.

The only real issue I have is with the ldap groups so I stick with 
/etc/group for now (not sure which of NetBSD's nsswitch (3.99.8) or 
nss_ldap (240) is buggy).