[Date Prev][Date Next] [Chronological] [Thread] [Top]

problems with ldap and ssh

To: <openldap-software@OpenLDAP.org>
Subject: problems with ldap and ssh
From: Rolandas Juodzbalis <next@proxy2.init.lt>
Date: Mon, 9 Jul 2001 10:11:12 +0300 (EEST)

Hello,

I got installed and running openldap-2.0.11. OS RedHat-7.1, nss-ldap from
redhat. I have migrated system files with migrations scripts from
padl.com. I have problem: If I add user to /etc/passwd without any
password and ldap, with password, I can login via ssh. If I remove user
from passwd, I can't. Where can be problem?

There is my /etc/pam.d/sshd file:

#%PAM-1.0
auth       required     /lib/security/pam_nologin.so
auth       sufficient    /lib/security/pam_ldap.so
auth       required     /lib/security/pam_unix_auth.so try_first_pass
account    sufficient   /lib/security/pam_ldap.so debug
account    required     /lib/security/pam_unix_acct.so
password   required     /lib/security/pam_cracklib.so
password   sufficient   /lib/security/pam_ldap.so
password   required     /lib/security/pam_pwdb.so use_first_pass
session    required     /lib/security/pam_unix_session.so

there is my nssswitch.conf:
passwd:     files ldap
group:      files ldap
shadow:     files ldap
hosts:      files dns
networks:   files
protocols:  files ldap
services:   files ldap
ethers:     db files
rpc:        db files
netgroup:   files ldap
automount:  files ldap


This is from system log:

Jul  9 09:35:55 dev slapd[19211]: daemon: conn=195 fd=14 connection from
IP=127.0.0.1:1741 (IP=0.0.0.0:34049) accepted.
Jul  9 09:35:55 dev slapd[19213]: conn=195 op=0 BIND dn="" method=128
Jul  9 09:35:55 dev slapd[19213]: conn=195 op=0 RESULT tag=97 err=0 text=
Jul  9 09:35:55 dev slapd[19214]: conn=195 op=1 SRCH
base="ou=People,dc=lerneffekt,dc=de" scope=1
filter="(&(objectClass=posixAccount)(uid=next))"
Jul  9 09:35:55 dev slapd[19214]: conn=195 op=1 SEARCH RESULT tag=101
err=0 text=
Jul  9 09:35:55 dev sshd[22929]: PAM pam_set_item: NULL pam handle passed
Jul  9 09:35:59 dev sshd[22929]: PAM pam_set_item: NULL pam handle passed
Jul  9 09:35:59 dev sshd[22929]: Failed password for illegal user next
from 217.147.32.5 port 3794
Jul  9 09:39:28 dev sshd[22929]: PAM pam_set_item: NULL pam handle passed
Jul  9 09:39:28 dev sshd[22929]: Failed password for illegal user next
from 217.147.32.5 port 3794


Rolandas
--
INIT NOC

Prev by Date: referral
Next by Date: Read access vs. Search access
Index(es):
- Chronological
- Thread