Re: PAM Authentication

[DT Piotr Wadas <pwadas@dtpw.pl>]

On Fri, 14 May 2010, Miha Krajnc wrote:

> Ok, i found out what it is, really dumb mistake, there are three slashes in
> the address (ldap:///192.168.1.107:389/). This can confuze most people,
> since when you are asked to put in the address of the ldap server, three are
> three slashes ("ldapi:///")

AFAIR in some modern versions of software like pam_ldap, libnss-ldap, etc, 
(at least in debian) one must use literal combinations like 

ldapi://%2Fsome%2Fwhere%2Fsocketfile 

Regards,
DT

> 
> 2010/5/11 Miha Krajnc <miha.krajnc.mb@gmail.com>
> 
> > I have set up 2 servers, a web server and a database server. The database
> > server has mysql and OpenLDAP (configured, with 1 Posix user). The web
> > server has apache, php, etc. I want to connect with the web server to the
> > database server with PAM (libpam-ldap) and use creditentials from the
> > database server for user logins. I have set up libpam-ldap, but the
> > authentecation doesnt work. Further investegation (/var/log/auth.log ) shows
> > that the teh web server cant contact the database server. However, i also ha
> > ve phpLDAPadmin installed aon the web server, and i can connect to the
> > database server from there. Anyone know what could be wrong?
> > Here is the auth.log:
> >
> > May 11 10:57:33 web sudo: nss_ldap: could not connect to any LDAP server as
> > cn=admin,dc=stef,dc=si - Can't contact LDAP server
> > May 11 10:57:33 web sudo: nss_ldap: failed to bind to LDAP server ldap:///
> > 192.168.1.107:389/: Can't contact LDAP server
> > May 11 10:57:33 web sudo: nss_ldap: reconnecting to LDAP server...
> > May 11 10:57:33 web sudo: nss_ldap: could not connect to any LDAP server as
> > cn=admin,dc=stef,dc=si - Can't contact LDAP server
> > May 11 10:57:33 web sudo: nss_ldap: failed to bind to LDAP server ldap:///
> > 192.168.1.107:389/: Can't contact LDAP server
> >
> >
> > --
> > Lep pozdrav, Miha Krajnc.
> >
> 
> 
> 
>