Mac OS X 10.5/6, authenticate against by NIS or LDAP when both servers have your username

Posted by Wang on Server Fault See other posts from Server Fault or by Wang
Published on 2010-05-19T05:21:04Z Indexed on 2010/05/19 5:31 UTC
Read the original article Hit count: 258

Filed under:
|
|

We have an organization-wide LDAP server and a department-only NIS server. Many users have accounts with the same name on both servers. Is there any way to get Leopard/Snow Leopard machines to query one server, and then the other, and let the user log in if his username/password combination matches at least one record?

I can get either NIS authentication or LDAP authentication. I can even enable both, with LDAP set as higher priority, and authenticate using the name and password listed on the LDAP server. However, in the last case, if I set the LDAP domain as higher-priority in Directory Utility's search path and then provide the username/password pair listed in the NIS record, then my login is rejected even though the NIS server would accept it.

Is there any way to make the OS check the rest of the search path after it finds the username?

© Server Fault or respective owner

Related posts about nis

Related posts about ldap