[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OPENLDAP ACL problems..

To: ajit@cc.iitb.ac.in
Subject: Re: OPENLDAP ACL problems..
From: Adam Williams <awilliam@whitemice.org>
Date: 04 Aug 2002 19:43:51 -0400
Cc: "OpenLDAP.org" <openldap-software@OpenLDAP.org>
In-reply-to: <Pine.LNX.4.33.0208041123570.838-100000@indica.cc.iitb.ac.in>
References: <Pine.LNX.4.33.0208041123570.838-100000@indica.cc.iitb.ac.in>

>I am sorry if this topic is off target in this august group. I am posting
>this here because I could not get the answers in the archives and I did
>not get any help in pam_ldap group also.
>What I am after:
> 	I am trying to replace NIS with LDAP.
> Environment:
> 	RedHat 7.2, openldap-2.0.11
> Problem:
> 	I have setup PAM entries correctly so that I am able to log into
> 	the system via ssh. Changing passwd (I saw many postings related
> 	to this but it was not an issue for me) also works fine.
> 
> 	The problem I face is that the system cannot map my uid and gid
> 	to proper string values. Just after I login I get the message
> 		id: cannot find name for user ID 50000
> 	The value 50000 happens to be my userid defined in the LDAP
> 	database.
> Some Observations:
> 	When I execute "getent passwd" as a normal user I dont succeed
> 	but when root does the same, the LDAP users are shown properly.
> 	My guess is that this is a problem in access control definitions.
> 	I am enclosing /etc/openldap/slapd.conf and /etc/ldap.conf files
> 	below.

Sounds like an nss problem, no a pam one (as you did manage to sign
in).  What do the user and group lines of /etc/nsswitch.conf look like?

Follow-Ups:
- Re: OPENLDAP ACL problems..
  - From: ajit k jena <ajit@cc.iitb.ac.in>

References:
- OPENLDAP ACL problems..
  - From: ajit k jena <ajit@cc.iitb.ac.in>

Prev by Date: DB files?
Next by Date: Re: OPENLDAP ACL problems..
Index(es):
- Chronological
- Thread