Setting up FC4 to use LDAP for login authentication

Run:

 sudo authconfig

Enabled LDAP on first screen like this:

     │  User Information        Authentication                         │ 
     │  [ ] Cache Information   [*] Use MD5 Passwords                  │ 
     │  [ ] Use Hesiod          [*] Use Shadow Passwords               │ 
     │  [*] Use LDAP            [*] Use LDAP Authentication            │ 
     │  [ ] Use NIS             [ ] Use Kerberos                       │ 
     │  [ ] Use Winbind         [ ] Use SMB Authentication             │ 
     │                          [ ] Use Winbind Authentication         │ 
     │                          [ ] Local authorization is sufficient  │ 

Enter LDAP Settings like this:

     │          [ ] Use TLS                              │ 
     │  Server: ldap.telascience.org____________________ │ 
     │ Base DN: dc=telascience,dc=org___________________ │

Edit /etc/ldap.conf and change pam_groupdn line to read:

 pam_groupdn cn=Shell,ou=Groups,dc=telascience,dc=org

(or possibly cn=Admin for medium security systems)

Setting up SVN server to use LDAP authentication

Setting up Bugzilla to use LDAP Authentication

Details at http://www.bugzilla.org/docs/tip/html/extraconfig.html#bzldap

It seems that the LDAP entries require an email attribute that bugzilla can use for sending email, but generally speaking this seems like a well supported option for bugzilla. I do wonder if there is an option for users not in LDAP to create accounts in bugzilla for the purpose of submitting bugs. I think this is desirable or even necessary!

sudo

http://www.courtesan.com/sudo/readme_ldap.html

Pointers to good LDAP information

• http://ldots.org/ldap - moderately helpful.