Article Content
Article Number | 000032399 |
Applies To | RSA Product Set: Security Analytics RSA Product/Service Type: SA Security Analytics Server RSA Version/Condition: 10.4.x, 10.5.x Platform: CentOS O/S Version: EL6 Platform (Other): Novell eDirectory |
Resolution | The configuration for PAM E-Directory is similar to PAM LDAP configuration. The only change is that it contains O=Edir_tree_name in base and binddn's. Below is the sample configuration. [root@localhost ~]# vi /etc/nslcd.conf [root@localhost ~]#vi /etc/pam_ldap.conf [root@localhost ~]#vi /etc/openldap/ldap.conf |
Notes | uidNumber for user and gidNumber for Groups need to be defined in order for Security Analytics to work. By default, users and groups in eDirectory do not have uid and gid numbers. It is necessary to extend the AD schema to add these attributes. More information on PAM/LDAP/start_tls Authentication via Novell eDirectory for Linux can be found here. |