[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE : LDAP PAM




Hello Philippe

> Here's my new ldap.conf :
> host xxx.xxx.xxx.xxx
> base dc=my,dc=domain

I think that this isn´t strictly necessary if you don´t want to use neither
SSL nor TLS. I don´t think so.

> ldap_version 3
> scope sub
> pam_filter objectclass=posixAccount
> pam_login_attribute uid

> I have always my error :
> Aug  8 15:07:49 squid login[3151]: pam_ldap:
ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT): Unknown error
> Aug  8 15:07:49 squid login[3151]: pam_ldap: _set_ssl_default_options
failed
> I don't understand why PAM talks to me about SSL or TLS....

It´s possible, I think, that it´s being defined in /etc/pam.d/login. In my
debian server, I thought that the authentication errors is occurring
because it. Then, I don´t have one functional file to send to you. Has
anyone one debian login file of pam.d working ok?
By the way, don´t you have another ldap.conf file (for example:
/usr/local/etc/openldap/ldap.conf)?

Best regards