I recently setup a OpenLDAP server to migrate NIS
users for our sytems. It works for a Linux Client
perfectly. I am in the process of configuring
secldapclntd on AIX 5.2 to talk to the LDAP server.
The AIX box currently binds to the LDAP server.
As root, I can "su - user" to any user in the LDAP
directory. However, I can not login as any LDAP
user vis SSH or telnet. On the Linux system,
I had to modify the sshd_config to allow The PAM
Passwords option. (PAMAuthenticationViaKbdInt yes).
I tried this on the AIX box, but it seems to not
help. I am unsure of how / if the secldapclntd
can pass to PAM so SSH will work. I am considering
installing OpenLDAP on AIX, but I was trying to keep
native programs running when possible.

Does anybody know if it is possible to get SSH to work
in a setup like this with secldapclntd and LDAP?

Also, does anybody know if it is possbible to get
secldapclntd to work without having to sent the cn=Admin
password across and just use Anonymous Binding?

Even with SSL/TLS working (if I can get this to work between
OPENLDAP and secldapclntd), I still have to drop the
cn=Admin password in a flat config file on each
AIX LDAP client.

Thanks in advance for any help.


I have these docs so far.
http://publib16.boulder.ibm.com/pser...2122001001endr
http://publib16.boulder.ibm.com/pser...authentication