[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: troubles while setting-up ldap server + pam

To: Dan White <dwhite@olp.net>
Subject: Re: troubles while setting-up ldap server + pam
From: Ivaylo Ganchev <ivaylo.ganchev@univ-paris8.fr>
Date: Wed, 24 Sep 2014 16:48:31 +0200
Cc: openldap-technical@openldap.org
Content-disposition: inline
In-reply-to: <20140924135552.GA3632@dan.olp.net>
References: <f79e1a458f309ce84e3377a86b29c49b.squirrel@webmail.univ-paris8.fr> <20140924135552.GA3632@dan.olp.net>
User-agent: Mutt/1.5.21 (2010-09-15)

Hello,

On 2014-09-24.Wed, Dan White wrote:
> On 09/24/14 14:30 +0200, Ivaylo Ganchev wrote:
> >Hello,
> >
> >I am installing openldap in my cathedra and am running into a strange
> >problem.
> 
> >- When I use libnss_ldapd and libpam_ldapd, the communication is OK, but
> >it seems that the client is not asking for the userPassword agrument and
> >so, there is no way to login (it only asks for "loginShell cn gidNumber
> >uidNumber objectClass homeDirectory gecos uid" and then in another
> >request "shadowExpire shadowInactive shadowFlag shadowWarning
> >shadowLastChange uid shadowMin shadowMax"
> 
> See:
> 
> http://arthurdejong.org/nss-pam-ldapd/setup

I followed this setup when configuring. Will re-read it. I think I miss
some further comprehension.

> and its troubleshooting steps, namely, getent passwd, getent shadow, and
> debug mode.
> 
> In default configuration, you will not directly expose the userPassword
> attribute to the client - a successful bind will authenticate the client's
> credentials.

thanks for pointing me these hints.

--
Ivaylo

References:
- troubles while setting-up ldap server + pam
  - From: "Ivaylo Ganchev" <ivaylo.ganchev@univ-paris8.fr>
- Re: troubles while setting-up ldap server + pam
  - From: Dan White <dwhite@olp.net>

Prev by Date: Re: troubles while setting-up ldap server + pam
Next by Date: Re: troubles while setting-up ldap server + pam
Index(es):
- Chronological
- Thread