[Date Prev][Date Next] [Chronological] [Thread] [Top]

Netgroups via OpenLDAP

Hi all!

I'm trying to replace my NIS with LDAP and I've gotten most of it functional, but not the netgroups. I'm not really sure where this problem belong, it's probably nothing wrong with OpenLDAP, but perhaps someone seen this problem before.

I have added the apropirate lines to nsswitch.conf and ldap.conf (i'm using pam_ldap and nss_ldap from www.padl.com).
nsswitch.conf: netgroup ldap
ldap.conf: nss_base_netgroup ou=Netgroup,dc=myserver,dc=org?one

and of course added some entrys using the nisNetgroup-schema.

When I try it out this is what i get from the log-files (slapd.log)
local4.debug] conn=16 fd=16 ACCEPT from IP=xx.xx.xx.xx (IP=
local4.debug] conn=16 op=0 BIND dn=<root-dn> method=128
local4.debug] conn=16 op=0 BIND dn=<root-dn> mech=SIMPLE ssf=0
local4.debug] conn=16 op=0 RESULT tag=97 err=0 text=
local4.debug] get_filter: unknown filter type=130
local4.debug] conn=16 op=1 SRCH base="ou=Netgroup,dc=myserver,dc=org" \
scope=1 deref=0 filter="(&(objectClass=nisNetgroup)(|(?=undefined)\
local4.debug] conn=16 op=1 SRCH attr=cn nisNetgroupTriple  memberNisNetgroup
local4.debug] conn=16 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text=

A very weird search-filter in other words. Anyone seen this before, or have any clue to what to do? Is this a solaris problem or a pam/nss_ldap problem ?

Best Regards