[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Newbie with PAM_LDAP (authentication on linux) and OPENLDAP



I don't know what the default settings are for ssl is if you don't specify
in ldap.conf, but try adding:

ssl no

Adam Oliver
System Administrator
Microsoft Certified Professional

"Even in trifling matters the depths of one's heart can be seen."
>From Hagakure, The Book of the Samurai
----- Original Message -----
From: "Broussard Philippe" <philippe.broussard@e-qual.fr>
To: <pamldap@padl.com>; <openldap-software@OpenLDAP.org>
Sent: Tuesday, August 12, 2003 4:27 AM
Subject: Newbie with PAM_LDAP (authentication on linux) and OPENLDAP


> Hi,
>
> I want authenticate my users when they login on a linux station (debian)
> But I have this error :
>
> Aug  8 15:07:49 squid login[3151]: pam_ldap:
> ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT): Unknown error
> Aug  8 15:07:49 squid login[3151]: pam_ldap: _set_ssl_default_options
> failed
>
>
> I don't understand why PAM talks to me about SSL or TLS....
> I don't want to use SSL or TLS
>
> I use openldap 2.1.17, debian 3.0, i have compiled the tarball of
> Pam_ldap 1.64
>
> An idea ????
>
>
> Philippe
>
>
>
> Here's my ldap.conf (/etc/ldap.conf):
> host xxx.xxx.xxx.xxx
> base dc=my,dc=domain
> ldap_version 3
> binddn cn=XXXX,dc=my,dc=domain
> bindpw XXXXX
>
> ------------------------------------
>
> here's my login file (in pam.d)
>
> auth       required   pam_env.so
> session    optional   pam_lastlog.so
> session    optional   pam_motd.so
> auth     required   /lib/security/pam_securetty.so
> auth     required   /lib/security/pam_nologin.so
> auth     sufficient /opt/pam_ldap-164/lib/security/pam_ldap.so
> auth     required   /lib/security/pam_unix_auth.so nullok
> account  sufficient /opt/pam_ldap-164/lib/security/pam_ldap.so
> account  required   /lib/security/pam_unix.so
> password sufficient /opt/pam_ldap-164/lib/security/pam_ldap.so
> password required   /lib/security/pam_unix.so nullok obscure min=4 max=8
> session  required   /lib/security/pam_unix.so
>
>
>
>
>