[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: AW: PAM problems with login... Please Help (fwd)



Ok, setup everything on a totally different LDAP database to reflect what
is in the ldifs, changed my nsswitch.conf, changed my /etc/openldap/login
to match what is here.  Still no luck.  Am seriously wondering if there is
something wrong with SuSE 6.4 and login.   Thinking about trying to do
this on RH just to see if it works, then copying that setup over and
seeing if it works here... If anyone has a SuSE 6.4 setup going, I would
love to see what you have for the following:

/etc/openldap/ldap.conf
/etc/openldap/slapd.conf
/etc/pam.d/login
/etc/nsswitch.conf
Sample LDIF file

Thanks for all the help thus far...

Cliff

On Thu, 20 Jul 2000, Oscar Steenmann wrote:

> On Thu, Jul 20, 2000 at 02:02:02PM -0400, Cliff Friedel wrote:
> >
> > If somebody could send me a nsswitch.conf, /etc/pam.d/login, and a sample
> > LDIF from a known working machine, I could try them out and see if it a
> > config problem.  Thanks...	
> > 
> > Cliff
> > 
> 
> /etc/pam.d/login
> 
> #%PAM-1.0
> auth       required     /lib/security/pam_securetty.so
> auth       required     /lib/security/pam_nologin.so
> auth       sufficient   /lib/security/pam_ldap.so
> auth       required     /lib/security/pam_unix_auth.so try_first_pass
> account    sufficient   /lib/security/pam_ldap.so
> account    required     /lib/security/pam_unix_acct.so
> password   required     /lib/security/pam_cracklib.so
> password   required     /lib/security/pam_ldap.so
> password   required     /lib/security/pam_pwdb.so use_first_pass
> session    required     /lib/security/pam_unix_session.so
> session    optional     /lib/security/pam_console.so
> 
> /etc/nsswitch.conf
> 
> passwd:         files ldap
> group:          files ldap
> hosts:          dns
> services:       ldap [NOTFOUND=return] files
> networks:       ldap [NOTFOUND=return] files
> protocols:      ldap [NOTFOUND=return] files
> rpc:            ldap [NOTFOUND=return] files
> ethers:         ldap [NOTFOUND=return] files
> netmasks:       files
> bootparams:     files
> publickey:      files
> automount:      files
> aliases:        files
> sendmailvars:   files
> netgroup:       files nis
> 
> A working LDIF file
> 
> dn: uid=oscar,ou=People,dc=ldap,dc=tryllian,dc=net
> uid: oscar
> cn: Oscar Steenmann
> givenname: Oscar
> sn: Steenmann
> mail: oscar@tryllian.com
> objectClass: person
> objectClass: organizationalPerson
> objectClass: inetOrgPerson
> objectClass: account
> objectClass: posixAccount
> objectClass: top
> objectClass: kerberosSecurityObject
> objectClass: shadowAccount
> userPassword: {crypt}x
> shadowLastChange: 11142
> shadowMax: 99999
> shadowWarning: 7
> shadowInactive: -1
> shadowExpire: -1
> shadowFlag: 134540380
> krbname: oscar@TRYLLIAN.COM
> loginShell: /bin/bash
> uidNumber: 500
> gidNumber: 500
> homeDirectory: /home/oscar
> gecos: Oscar Steenmann
> 
> Group file:
> 
> dn: cn=oscar,ou=Group,dc=ldap,dc=tryllian,dc=net
> objectClass: posixGroup
> objectClass: top
> cn: oscar
> userPassword: {crypt}x
> gidNumber: 500
> memberUid: oscar
> 
> Maybe it will help..
> 
> Regards,
> 
> -- 
> Oscar Steenmann			- (oscar@tryllian.com)
> 
> 
>