horok/sudo
1
0
Fork 0
Code Activity
sudo/debian/patches/sudo-ldap-docs.patch
Daniel Baumann 947d10fa02
Adding debian version 1.9.16p2-2. 
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
2025-06-22 09:52:38 +02:00

59 lines
2.4 KiB
Diff
Raw Permalink Blame History

Description: Adapt README.LDAP to the actual state of the sudo-ldap package
Author: Marc Haber <mh+debian-packages@zugschlus.de>
Forwarded: not-needed
--- a/README.LDAP.md
+++ b/README.LDAP.md
@@ -35,22 +35,8 @@ They are one and the same.
## Build instructions
-The simplest way to build sudo with LDAP support is to include the
-`--with-ldap` option.
-
- $ ./configure --with-ldap
-
-If your ldap libraries and headers are in a non-standard place, you will need
-to specify them at configure time. E.g.
-
- $ ./configure --with-ldap=/usr/local/ldapsdk
-
-Sudo is developed using OpenLDAP but Netscape-based LDAP libraries
-(such as those present in Solaris) and IBM LDAP are also known to work.
-
-If special configuration was required to build an LDAP-enabled sudo,
-let the sudo workers mailing list <sudo-workers@sudo.ws> know so
-we can improve sudo.
+The Debian package of sudo-ldap is already built with LDAP support
+using the OpenLDAP libs.
## Schema Changes
@@ -186,13 +172,10 @@ I recommend using any of the following L
There are dozens of others, some Open Source, some free, some not.
-## Configure your /etc/ldap.conf and /etc/nsswitch.conf
+## Configure your /etc/sudo-ldap.conf and /etc/nsswitch.conf
-The /etc/ldap.conf file is meant to be shared between sudo, pam_ldap, nss_ldap
-and other ldap applications and modules. IBM Secureway unfortunately uses
-the same file name but has a different syntax. If you need to change where
-this file is stored, re-run configure with the `--with-ldap-conf-file=PATH`
-option.
+The Debian package sudo-ldap uses /etc/sudo-ldap.conf as configuration file
+and is configured to use nsswitch.
See the "Configuring ldap.conf" section in the sudoers.ldap manual
for a list of supported ldap.conf parameters and an example ldap.conf
@@ -204,10 +187,7 @@ After configuring /etc/ldap.conf, you mu
/etc/nsswitch.conf file to tell sudo to look in LDAP for sudoers.
See the "Configuring nsswitch.conf" section in the sudoers.ldap
manual for details. Sudo will use /etc/nsswitch.conf even if the
-underlying operating system does not support it. To disable nsswitch
-support, run configure with the `--with-nsswitch=no` option. This
-will cause sudo to consult LDAP first and /etc/sudoers second,
-unless the ignore_sudoers_file flag is set in the global LDAP options.
+underlying operating system does not support it.
## Debugging your LDAP configuration
View git blame Copy permalink