差異處
這裏顯示兩個版本的差異處。
| Both sides previous revision 前次修改 下次修改 | 前次修改 | ||
|
ldap [2017/01/02 21:57] 127.0.0.1 |
ldap [2017/06/02 19:25] (目前版本) jz |
||
|---|---|---|---|
| 行 1: | 行 1: | ||
| + | ====== LDAP client ====== | ||
| + | |||
| + | ===== Install ===== | ||
| + | |||
| <code bash> | <code bash> | ||
| sudo apt-get install libnss-ldap | sudo apt-get install libnss-ldap | ||
| 行 7: | 行 11: | ||
| session required pam_mkhomedir.so skel=/etc/skel/ | session required pam_mkhomedir.so skel=/etc/skel/ | ||
| - | # optional | + | ===== optional ===== |
| sudo auth-client-config -t nss -p lac_ldap | sudo auth-client-config -t nss -p lac_ldap | ||
| sudo pam-auth-update | sudo pam-auth-update | ||
| 行 14: | 行 18: | ||
| vi /etc/pam.d/common-password | vi /etc/pam.d/common-password | ||
| - | delete use_authtok | + | ===== delete use_authtok ===== |
| <code> | <code> | ||
| #password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass | #password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass | ||
| 行 20: | 行 24: | ||
| </code> | </code> | ||
| + | ===== clear caceh ===== | ||
| + | <code> | ||
| + | nscd --invalidate=passwd | ||
| + | </code> | ||
| + | |||
| + | ===== docker-openldap-backup ===== | ||
| + | https://github.com/osixia/docker-openldap-backup | ||
| + | |||
| + | ==== Restore ==== | ||
| + | <code> | ||
| + | rm -rf /var/lib/ldap | ||
| + | rm -rf /etc/ldap/slapd.d | ||
| + | slapd-restore-config 20170311T040001-config.gz | ||
| + | slapd-restore-data 20170311T040001-data.gz | ||
| + | # try to restore mutiple times | ||
| + | slapd-restore-config 20170311T040001-config.gz | ||
| + | slapd-restore-data 20170311T040001-data.gz | ||
| + | </code> | ||
