[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: migrating passwd from NIS to LDAP



Did you restart sshd after setting up ldap?  It's what did me in for about 
a day.

					-jeremy



On Tue, 9 Mar 2004, Chris Majewski wrote:

> Tony Earnshaw <tonye@billy.demon.nl> writes:
> 
> > tir, 09.03.2004 kl. 19.37 skrev Chris Majewski:
> >
> >> I've also  set up my server  to do TLS. So  far, I can  look people up
> >> by pointing Mozilla's  Addressbook to my LDAP server.  I check the SSL
> >> box,  type in the  userid of  someone in  my database.  Then I  get an
> >> authentication window.  I type in my  password, and the  entry for that
> >> person appears.  So far  so good. Now  I would  like to use  this LDAP
> >> database  as  my  passwd  database   (currently  I  use  NIS).  In  my
> >> nsswitch.conf I have this:
> >> 
> >>               passwd: files ldap
> >> 
> >> In  my /etc/ldap.conf  I've put  some stuff  that seems  more  or less
> >> correct (the documentation on this is not exactly plentiful). 
> >> 
> >> Now, I know this isn't working because when I type ssh I get this:
> >> 
> >>      You don't exist, go away! 
> >
> > I love that!
> >
> > The thing is, that your Posix account (compare it to /etc/passwd) for
> > cn: Xiushan(Shaun) Feng Doesn't exist, yet. You have to make it. Maybe
> > /etc/group and /etc/shadow, too. 
> 
> But I'm  not Xiushan Feng! I'm  Chris! And I  do have an entry  in the
> database,  similar to the  entry I  pasted before.  This entry  is not
> exactly a passwd  entry though -- for example, it  doesn't say what my
> home directory is.  What kind of entry is  pam_ldap expecting exactly,
> (or is that a secret)? 
> 
> > What OS and distro? (don't tell me, Windows XP, heh?) 
> 
> RedHat 9. 
> 
> > What Openldap version? 
> 
> rpm -qa says:
> openldap-2.0.27-8
> 
> Thanks! 
> 
> -chris
> 
> 

-- 
--
+================================================================+
  Jeremy Hallum, System Manager , Astronomy, University of Michigan
              jhallum@umich.edu::jhallum@dreamt.org
                    "Audentis Fortuna Iuvat"