https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062091#M6484 Hello,<BR /><BR />Sure that LDAP server would be a good and not that hard way to go. ead Red hat advises on that at :<BR /><A href="http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-ldap.php3" target="_blank">http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-ldap.php3</A><BR /><BR />They also have a few pages on pam. Maybe could your ead them too and let us know what exactly doesn't work on setting it up :<BR /><A href="http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-pam.php3" target="_blank">http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-pam.php3</A><BR /><A href="http://www.bb-zone.com/SLGFG/chapter25.html" target="_blank">http://www.bb-zone.com/SLGFG/chapter25.html</A><BR /><BR />J Wed, 03 Sep 2003 05:37:29 GMT Jerome Henry 2003-09-03T05:37:29Z https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062089#M6482 I am running several Redhat 9.0 Linux workstations that run OPENLDAP clients. I don't want local root to be able to change other user passwords. Also I want the old password be prompted before a user is allowed to change his password.<BR /><BR />I am playing with PAM but haven't had any succees. Mainly because I don't understand PAM well enough.<BR /><BR />Any ideas ?<BR /><BR />Many thanks for your time.<BR /><BR />Sriram Wed, 03 Sep 2003 02:19:54 GMT https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062089#M6482 Sriram Rajan 2003-09-03T02:19:54Z https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062090#M6483 Your best bet would be an NIS configuration. Then the user passwords would be controlled by the NIS master server.<BR /><BR />Its somewhat complex but it can be done.<BR /><BR />Making one of the Linux boxes an LDAP server might be a better way to go. You want central control and either suggestion can do it.<BR /><BR />SEP Wed, 03 Sep 2003 02:47:52 GMT https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062090#M6483 Steven E. Protter 2003-09-03T02:47:52Z https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062091#M6484 Hello,<BR /><BR />Sure that LDAP server would be a good and not that hard way to go. ead Red hat advises on that at :<BR /><A href="http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-ldap.php3" target="_blank">http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-ldap.php3</A><BR /><BR />They also have a few pages on pam. Maybe could your ead them too and let us know what exactly doesn't work on setting it up :<BR /><A href="http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-pam.php3" target="_blank">http://www.europe.redhat.com/documentation/rhl9/rhl-rg-en-9/ch-pam.php3</A><BR /><A href="http://www.bb-zone.com/SLGFG/chapter25.html" target="_blank">http://www.bb-zone.com/SLGFG/chapter25.html</A><BR /><BR />J Wed, 03 Sep 2003 05:37:29 GMT https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062091#M6484 Jerome Henry 2003-09-03T05:37:29Z https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062092#M6485 see LJ articles :<BR /><BR /><A href="http://www.linuxjournal.com/article.php?sid=6936" target="_blank">http://www.linuxjournal.com/article.php?sid=6936</A><BR /><BR />Regards,<BR />Vitaly Wed, 03 Sep 2003 07:31:13 GMT https://community.hpe.com/t5/operating-system-linux/linux-pam-and-ldap/m-p/3062092#M6485 Vitaly Karasik_1 2003-09-03T07:31:13Z