Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

Share this Page URL
Help

Users and Network Authentication > The Name Service Switch File - Pg. 496

496 Chapter 8: User Administration While OpenLDAP does support the SHA512 passwords now included by default in the shadow password suite, the default is based on MD5 hashes. pam_password md5 If you prefer the SHA512 hash, replace that directive with: pam_password exop /etc/openldap/ldap.conf You'll need to specify the URI, BASE, and TLS_CACERTDIR variables in this file, just as was done in the /etc/pam_ldap.conf configuration file. Given the parameters in the preceding section, you may even see a fourth directive in that file: URI ldap://127.0.0.1 HOST tester1.example.com BASE dc=example,dc=com TLS_CACERTDIR /etc/openldap/cacerts If the LDAP server is not on the local system, and the network domain is not