[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP Linux user authentication problem

hi all,

your /etc/nsswitch.conf file must be:
 passwd: ldap files
 shadow: ldap files
 group:  ldap files

have you edited your /pam.d/login file like this:
(use pam_ldap to authenticate your users with ldap)

 auth     sufficient /lib/security/pam_ldap.so
 account  sufficient /lib/security/pam_ldap.so
 password sufficient /lib/security/pam_ldap.so
 session  sufficient /lib/security/pam_ldap.so

hope this helps
Networks & systems admin

--- Arturo Peris <aperis@gap.upv.es> wrote:
> Hi ¡ I'm trying to set my ldap server as a
> centralized users'
> authenticator in my linux cluster.
> I have all working fine, but last when I delete some
> user from my
> /etc/passwd, /etc/shadow and /etc/group files I
> can't see calls in logs
> to my ldap libraries. If I don't delete users from
> files I can see calls
> to ldap libraries and user can log into the system,
> althougth these
> users log into the system through the /etc/password
> file.
> My /etc/nsswitch.conf file:
> passwd: ldap files
> #shadow: files ldap
> group:  ldap files
> Ldapsearch works fine:
> [root@machine01 openldap]# ldapsearch
> SASL/DIGEST-MD5 authentication started
> Please enter your password:
> I have used padl migration scripts.
> My ldap rmp packages:
> openldap-clients-2.0.11-8
> openldap-2.0.11-8
> nss_ldap-149-4
> auth_ldap-1.4.7-2
> My pam rpm packages:
> pam_krb5-1.31-1
> pam-0.74-22
> pam-devel-0.74-22
> ne1 can help me ?
> Thanks.

Do You Yahoo!?
Listen to your Yahoo! Mail messages from any phone.