差異處
這裏顯示兩個版本的差異處。
| 下次修改 | 前次修改 | ||
|
ldap [2016/09/10 02:19] jz 建立 |
ldap [2017/06/02 19:25] (目前版本) jz |
||
|---|---|---|---|
| 行 1: | 行 1: | ||
| + | ====== LDAP client ====== | ||
| + | |||
| + | ===== Install ===== | ||
| + | |||
| <code bash> | <code bash> | ||
| sudo apt-get install libnss-ldap | sudo apt-get install libnss-ldap | ||
| 行 7: | 行 11: | ||
| session required pam_mkhomedir.so skel=/etc/skel/ | session required pam_mkhomedir.so skel=/etc/skel/ | ||
| - | # optional | + | ===== optional ===== |
| sudo auth-client-config -t nss -p lac_ldap | sudo auth-client-config -t nss -p lac_ldap | ||
| sudo pam-auth-update | sudo pam-auth-update | ||
| + | # pam password | ||
| + | vi /etc/pam.d/common-password | ||
| + | ===== delete use_authtok ===== | ||
| + | <code> | ||
| + | #password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass | ||
| + | password [success=1 user_unknown=ignore default=die] pam_ldap.so try_first_pass | ||
| + | </code> | ||
| + | |||
| + | ===== clear caceh ===== | ||
| + | <code> | ||
| + | nscd --invalidate=passwd | ||
| + | </code> | ||
| + | |||
| + | ===== docker-openldap-backup ===== | ||
| + | https://github.com/osixia/docker-openldap-backup | ||
| + | |||
| + | ==== Restore ==== | ||
| + | <code> | ||
| + | rm -rf /var/lib/ldap | ||
| + | rm -rf /etc/ldap/slapd.d | ||
| + | slapd-restore-config 20170311T040001-config.gz | ||
| + | slapd-restore-data 20170311T040001-data.gz | ||
| + | # try to restore mutiple times | ||
| + | slapd-restore-config 20170311T040001-config.gz | ||
| + | slapd-restore-data 20170311T040001-data.gz | ||
| + | </code> | ||
