GSoC/GCI Archive
Google Code-in 2012 The NetBSD Project

Setup single sign-on (SSO) service using LDAP

completed by: Matthew

mentors: Aleksej Saushev

Write in clear terms what needs to be set up for implementing single sign-on service using LDAP.


Write step-by-step instructions for installation and configuration of OpenLDAP server, installation and configuration of LDAP PAM module, and other components as needed (both, for client and server).

Provide instructions how to test functionality (steps how to make sure it works).

Create a network with at least two machines. Make sure that your instructions apply to this configuration to (write separate sections, for client and for server, if needed). Make sure that network traffic is encrypted (use WireShark or tcpdump to test it, provide instructions for that).

Provide instructions how to operate this setup (how to add-remove user accounts, to change-reset passwords, and so on).


You are to make sure that you provide references to documentation for component you used (e.g. man pages, BIND Administrator Reference Manual, if applies).

You are to make sure that you provide step-by-step instructions for what you did.

You are to illustrate instructions with shell commands and configuration file snippets.