[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: troubles while setting-up ldap server + pam

To: Ivaylo Ganchev <ivaylo.ganchev@univ-paris8.fr>
Subject: Re: troubles while setting-up ldap server + pam
From: Dan White <dwhite@olp.net>
Date: Wed, 24 Sep 2014 08:55:53 -0500
Cc: openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <f79e1a458f309ce84e3377a86b29c49b.squirrel@webmail.univ-paris8.fr>
References: <f79e1a458f309ce84e3377a86b29c49b.squirrel@webmail.univ-paris8.fr>
User-agent: Mutt/1.5.23 (2014-03-12)

On 09/24/14 14:30 +0200, Ivaylo Ganchev wrote:

Hello,

I am installing openldap in my cathedra and am running into a strange
problem.

- When I use libnss_ldapd and libpam_ldapd, the communication is OK, but
it seems that the client is not asking for the userPassword agrument and
so, there is no way to login (it only asks for "loginShell cn gidNumber
uidNumber objectClass homeDirectory gecos uid" and then in another
request "shadowExpire shadowInactive shadowFlag shadowWarning
shadowLastChange uid shadowMin shadowMax"


See:

http://arthurdejong.org/nss-pam-ldapd/setup

and its troubleshooting steps, namely, getent passwd, getent shadow, and
debug mode.

In default configuration, you will not directly expose the userPassword
attribute to the client - a successful bind will authenticate the client's
credentials.

--
Dan White

Follow-Ups:
- Re: troubles while setting-up ldap server + pam
  - From: Ivaylo Ganchev <ivaylo.ganchev@univ-paris8.fr>

References:
- troubles while setting-up ldap server + pam
  - From: "Ivaylo Ganchev" <ivaylo.ganchev@univ-paris8.fr>

Prev by Date: troubles while setting-up ldap server + pam
Next by Date: Re: troubles while setting-up ldap server + pam
Index(es):
- Chronological
- Thread