Hello,
I've configurated a LDAP user authentication on AIX V6 against Active Directory (Windows Server 2008).
The Tree is built as follows:
test (DC)
|--- testgroup (group with members: user1, user2)
|
|--- sys1 (OU)
| |--- sys1group (group with member: user1)
|
|--- sys2 (OU)
| |--- sys2group (group with member: user2)
How is the LDAP Client to configurate that only members of sys1group have access to the AIX system?
I do NOT want to: - change the /etc/security/user file
- move user1 to OU sys1
I have set the groubasedn to dc=test in the ldap.cfg (not to cn=sys1group,ou=sys1,dc=test) because the testgroup should be also detected.
Is there the posibility to set a path to a group which is only used while authentication to grant access to the members?
There are also the parameters hostbasedn and authbasedn in the ldap.cfg but I don't know how to use them.
Has anyone an idea?
Thank you in advance.