[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OPENLDAP ACL problems..

>I am sorry if this topic is off target in this august group. I am posting
>this here because I could not get the answers in the archives and I did
>not get any help in pam_ldap group also.
>What I am after:
> 	I am trying to replace NIS with LDAP.
> Environment:
> 	RedHat 7.2, openldap-2.0.11
> Problem:
> 	I have setup PAM entries correctly so that I am able to log into
> 	the system via ssh. Changing passwd (I saw many postings related
> 	to this but it was not an issue for me) also works fine.
> 	The problem I face is that the system cannot map my uid and gid
> 	to proper string values. Just after I login I get the message
> 		id: cannot find name for user ID 50000
> 	The value 50000 happens to be my userid defined in the LDAP
> 	database.
> Some Observations:
> 	When I execute "getent passwd" as a normal user I dont succeed
> 	but when root does the same, the LDAP users are shown properly.
> 	My guess is that this is a problem in access control definitions.
> 	I am enclosing /etc/openldap/slapd.conf and /etc/ldap.conf files
> 	below.

Sounds like an nss problem, no a pam one (as you did manage to sign
in).  What do the user and group lines of /etc/nsswitch.conf look like?