[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: cannot login using ldap user credential

To: openldap-technical@openldap.org
Subject: Re: cannot login using ldap user credential
From: stefano malini <lozingalo@gmail.com>
Date: Fri, 20 Apr 2012 11:00:55 +0200
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=bziN5vq8ZD/Fb/q5X33YVUoJ4f+PY6DVj0NGpmb/aak=; b=rhe7JIuxUgRkgrARiLCaWQ5Cl4gfd/IKb9k26rIMGHmBifAySDy8c3MQuBcPP556ox Wdvyzw0R7skSNcnU0VLzruiogFu7cXUK9L9VFoH67oGA7n1XdDqYO+e7O422rf4o2ojE bB1MOUeATYB9q2E3wzwODyybEq8+8mxyaS3gDyGmWsTss/72G/G5wbmwfCKjZ4peTJBN aBH201y2PqziblkLxd96thuDQn7aVb5WO+MIOKrg9f2Tsl24Wd9Iqb/gZEzGwHOcOYHl 1WzC7pmQP5QZiaQHK4So49t8qT3EQ57zJozFbc/dz2FgSClkerpVaXEYyd6rtTgdjqqz mWeA==
In-reply-to: <4F9123F2.4080300@gmail.com>
References: <4F8FE14B.5050902@gmail.com> <4F902E91.208@ayni.com> <4F91062C.2070401@gmail.com> <1334909125.2943.2.camel@sorbet.thuis.net> <4F9123F2.4080300@gmail.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.24) Gecko/20111108 Thunderbird/3.1.16

i found the error:
modulepath	back_hdb must be
moduleload	back_hdb



On 04/20/2012 10:53 AM, stefano malini wrote:

hi, i make a big mistake and i remove slapd!
am reinstalling it and am finding some troubles doing this.
after configuring slapd id doesn't start. in syslog the error is

<database> failed init (hdb)

follow slapd.conf

#Basics
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/nis.schema

pidfile /var/run/slapd/slapd.pid
argsfile /var/run/slapd/slapd.args
loglevel trace
modulepath /usr/lib/ldap
modulepath back_hdb

#Database Configuration
database hdb
suffix "dc=amahoro,dc=bi"
rootdn "cn=Manager,dc=amahoro,dc=bi"
rootpw {SSHA}zH2A+jeSlbl2/UcAXm596KPV4IB/R6x9
directory /var/lib/ldap
index objectClass,cn eq

#ACLs
access to attrs=userPassword
by anonymous auth
by self write
by * none

access to *
by self write
by * none

what is wrong?



On 04/20/2012 10:05 AM, Arthur de Jong wrote:

On Fri, 2012-04-20 at 08:46 +0200, stefano malini wrote:

please take a look of nslcd debug trying the login using user "zingalo"
that is registered in the ldap server:

nslcd: [3c9869] DEBUG: connection from pid=3209 uid=0 gid=0
nslcd: [3c9869] DEBUG: nslcd_pam_authc("zingalo","","login","***")
nslcd: [3c9869] DEBUG: myldap_search(base="dc=amahoro,dc=bi",
filter="(&(objectClass=posixAccount)(uid=zingalo))")
nslcd: [3c9869] DEBUG: ldap_initialize(ldap://192.168.5.219:389)
nslcd: [3c9869] DEBUG: ldap_set_rebind_proc()
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3)
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_DEREF,0)
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,0)
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,0)
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,0)
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON)
nslcd: [3c9869] DEBUG: ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON)
nslcd: [3c9869] DEBUG:
ldap_simple_bind_s("uid=nslcd_proc,ou=Users,dc=amahoro,dc=bi","***")
(uri="ldap://192.168.5.219:389";)
nslcd: [3c9869] DEBUG: ldap_result(): end of results
nslcd: [3c9869] "zingalo": user not found

what could i check again?


Could you include the output of nslcd when doing
getent passwd zingalo
Also, does ldapsearch find the user?

References:
- cannot login using ldap user credential
  - From: stefano malini <lozingalo@gmail.com>
- Re: cannot login using ldap user credential
  - From: anax <anax@ayni.com>
- Re: cannot login using ldap user credential
  - From: stefano malini <lozingalo@gmail.com>
- Re: cannot login using ldap user credential
  - From: Arthur de Jong <arthur@arthurdejong.org>
- Re: cannot login using ldap user credential
  - From: stefano malini <lozingalo@gmail.com>

Prev by Date: Re: cannot login using ldap user credential
Next by Date: getent passwd doesn't show ldap user
Index(es):
- Chronological
- Thread