LDAP login script

[mmatras]

Hello,

All I want to do is: when user is logging in and the account exist in the system thats fine, everything should be as normal, but if the account doesn't exist I would like to check on ldap server if the user exists maybe using 'ldapserch -x -D ... -w password' command than parse the response, create his account using command adduser and log the user in. Is it possible? I tried to use LDAP authentication but unfortunately the server doesn't contains enough informations for poixAccout.

Thanks for all responses.

[NightShade03]

Hello,

All I want to do is: when user is logging in and the account exist in the system thats fine, everything should be as normal, but if the account doesn't exist I would like to check on ldap server if the user exists maybe using 'ldapserch -x -D ... -w password' command than parse the response, create his account using command adduser and log the user in. Is it possible? I tried to use LDAP authentication but unfortunately the server doesn't contains enough informations for poixAccout.

Thanks for all responses.

You can't change the way a login works. The script will only execute if user logins (due to them existing). If they don't exist you'd need to execute the script to create the user yourself. I'd also like to point out that this is a horribly insecure way of deal with new users as there is no policy in place to restrict anyone from creating their own account.

[Mudgen]

Well, you can of course change the way a login works, with pam, but it doesn't work the way OP envisions.