|Applies To||RSA Product Set: Security Analytics|
RSA Product/Service Type: SA Security Analytics Server
RSA Version/Condition: 10.4.x, 10.5.x
O/S Version: EL6
Platform (Other): Novell eDirectory
|Resolution||The configuration for PAM E-Directory is similar to PAM LDAP configuration. The only change is that it contains O=Edir_tree_name in base and binddn's.|
Below is the sample configuration.
[root@localhost ~]# vi /etc/nslcd.conf
[root@localhost ~]#vi /etc/pam_ldap.conf
[root@localhost ~]#vi /etc/openldap/ldap.conf
|Notes||uidNumber for user and gidNumber for Groups need to be defined in order for Security Analytics to work. |
By default, users and groups in eDirectory do not have uid and gid numbers. It is necessary to extend the AD schema to add these attributes.
More information on PAM/LDAP/start_tls Authentication via Novell eDirectory for Linux can be found here.