[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: redhat 7.2 and ldap.conf

To: <Jehan.Procaccia@int-evry.fr>
Subject: Re: redhat 7.2 and ldap.conf
From: Julio Sanchez Fernandez <j_sanchez@stl.es>
Date: 24 Oct 2001 18:52:51 +0200
Cc: <openldap-software@OpenLDAP.org>
In-reply-to: <Jehan.Procaccia@int-evry.fr>'s message of "Wed, 24 Oct 2001 18:10:05 +0200 (CEST)"
References: <Pine.LNX.4.33.0110241804260.4193-100000@corbeau.int-evry.fr>
User-agent: Gnus/5.0807 (Gnus v5.8.7) Emacs/20.7

<Jehan.Procaccia@int-evry.fr> writes:

> Could it be because I choosed "security medium" during install ?,

I don't know what that option would mean.

> however
> to run my tests I did stopped ipchains !

In my scripts, that flushes the chains (should be tables by now?).

> also I noticed that an "su -
> username" (username beeing an ldap posixaccount) works fine ! ,even the
> automont map which is in ldap works. So I concluded that there is a
> problem of password encryption somewhere.

All that means nss_ldap and the rest are working alright, but pam_ldap
is failing.

Check you slapd permissions and Make sure you have granted 'auth' to
* or to those connections coming from the client machine.

Otherwise, this could be a 7.2 bug.

> Where ? how could I debug that ?

Check your /var/log/slapd to see if it is trying to BIND, how, and
what is the result of it.

> PS: "ask RedHAT" ! to what address should I send that request (apart from
> nalin@redhat.com !)

Don't nag Nalin directly, go to http://bugzilla.redhat.com, check if
there is something like that reported or add your own entry if not.

But check the logs first...

Julio

P.S. I have deleted form the recipient list both Nalin and your own
     mci-unix list that rejects my messages.

Follow-Ups:
- Re: redhat 7.2 and ldap.conf
  - From: Nalin Dahyabhai <nalin@redhat.com>

References:
- Re: redhat 7.2 and ldap.conf
  - From: <Jehan.Procaccia@int-evry.fr>

Prev by Date: Re: redhat 7.2 and ldap.conf
Next by Date: Re: Problems with SSHA and SMD5
Index(es):
- Chronological
- Thread