Путеводитель по Руководству Linux

  User  |  Syst  |  Libr  |  Device  |  Files  |  Other  |  Admin  |  Head  |



   auto.master    ( 5 )

мастер карта для автомонтирования, консультируемая autofs (Master Map for automounter consulted by autofs)

  Name  |  Description  |  Format  |  Builtin map -hosts  |  Builtin map -null  |  Ldap maps  |    Ldap authentication, encrypted and certified connections    |  Examples  |  See also  |

LDAP AUTHENTICATION, ENCRYPTED AND CERTIFIED CONNECTIONS

LDAP authenticated binds, TLS encrypted connections and certification may be used by setting appropriate values in the autofs authentication configuration file and configuring the LDAP client with appropriate settings. The default location of this file is @mapdir@/autofs_ldap_auth.conf.

If this file exists it will be used to establish whether TLS or authentication should be used.

An example of this file is:

<?xml version="1.0" ?> <autofs_ldap_sasl_conf usetls="yes" tlsrequired="no" authrequired="no" authtype="DIGEST-MD5" user="xyz" secret="abc" />

If TLS encryption is to be used the location of the Certificate Authority certificate must be set within the LDAP client configuration in order to validate the server certificate. If, in addition, a certified connection is to be used then the client certificate and private key file locations must also be configured within the LDAP client.

In OpenLDAP these may be configured in the ldap.conf file or in the per-user configuration. For example, it may be sensible to use the system wide configuration for the location of the Certificate Authority certificate and set the location of the client certificate and private key in the per-user configuration. The location of these files and the configuration entry requirements is system dependent so the documentation for your installation will need to be consulted to get further information.

See autofs_ldap_auth.conf(5) for more information.