Yubico Forum

yubikey schema for OpenLDAP
Page 1 of 1

Author:  mludvig [ Wed Oct 31, 2012 5:09 am ]
Post subject:  yubikey schema for OpenLDAP


I've been trying to find a yubikey LDAP schema for use with pam_yubico, i.e. schema that will let me to assign YubiKey IDs to users through our company LDAP infrastructure.

Is it available for download somewhere? I spent quite some time looking for the schema file but had no luck so far.

Yes I'm aware I could abuse an unused attribute in our LDAP but would much prefer to do it cleanly.

Thanks for any help!

- mludvig

Author:  Klas [ Tue Nov 06, 2012 8:41 am ]
Post subject:  Re: yubikey schema for OpenLDAP


Currently we don't have an ldap schema for incorporating YubiKeys into your directory, but I can see how this would be useful. We'll try to see if we can come up with one, but it might be awhile.


Author:  mludvig [ Tue Nov 06, 2012 12:20 pm ]
Post subject:  Re: yubikey schema for OpenLDAP

That's all right guys, I have created the schema and making it available to all YubiKey users along with instructions: http://www.logix.cz/michal/devel/yubikey-ldap/

Feel free to use it, distribute it with pam_yubico, etc. Hope it will make someone's day brighter :)

Author:  staples84 [ Wed Nov 07, 2012 11:22 am ]
Post subject:  Re: yubikey schema for OpenLDAP

It would be great to have the YubiRadius and validation servers support the lookup of ldap based yubikey ID mappings to users.

This would make User administration in the enterprise much more streamline.

Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group