Environment
NMAS 3.0
Novell Open Enterprise Server 1 (OES 1) Linux
Novell Open Enterprise Server 2 (OES 2) Linux
Situation
How to allow a NMAS Method to login to eDirectory through LDAP
How to allow a NMAS Method to authenticate through LDAP
Resolution
By default LDAP and other server-side utilities use NDS login first and if this fails, it uses the Simple Password login. eDirectory 8.8 has new functionality that will allow the LDAP authentication to use an NMAS method. It uses an environment variable to accomplish this.
Complete the following procedure to allow the LDAP authentication to use a NMAS Method.
1) Set the environment variable:
Linux and UNIX:
Add the following in the ndsd script /etc/init.d/ndsd:
NDSD_TRY_NMASLOGIN_FIRST=true
export NDSD_TRY_NMASLOGIN_FIRST
NetWare:
Add the following in the beginning of c:\nwserver\startup.ncf file:
env NDSD_TRY_NMASLOGIN_FIRST=true
Windows:
Right-click on "My Computer" on the desktop and select Properties. In the Advanced tab click Environment Variables. Under System Variables, Add the variable and set the value to true.
2) Restart the eDirectory server.
3) Set the default login sequence on the user to the NMAS Method implemented.
Make sure that the NMAS plugin is installed. Then from the Roles and Tasks view of iManager, in the NMAS section, select "NMAS Login Sequences". Check the sequence you want to become the default and click on the "Make Default" link.
Another alternative would be to change the code for application that is authenticating to use the NMAS LDAP SDK by using the LDAP NMAS bind API call. This API call can pass the Login Sequence that is being used. https://developer.novell.com/ndk/doc/cldap/index.html?page=/ndk/doc/cldap/ldaplibc/data/afcdjj7.html.
Additional Information
Formerly known as TID# 10099787