[Date Prev][Date Next] [Chronological] [Thread] [Top]

Newbie: problem configuring FreeBSD box as LDAP client



Hi All.
A newbie question.
I'm trying to set up my FreeBSD 4.7 client box to authenticate users via
LDAP (OpenLDAP 2.1.17 on Solaris 9).
When I'm trying to telnet to BSD box with correct username/password
(erik/bla-bla-bla), I have "login incorrect" message.
At the same time on LDAP server I can see the following syslog messages.

Apr 10 11:47:16 er slapd[5247]: [ID 848112 local4.debug] conn=1 fd=12 ACCEPT
fro
m IP=172.27.1.9:1703 (IP=0.0.0.0:389)
Apr 10 11:47:16 er slapd[5247]: [ID 347666 local4.debug] conn=1 op=0 BIND
dn=""
method=128
Apr 10 11:47:16 er slapd[5247]: [ID 217296 local4.debug] conn=1 op=0 RESULT
tag=
97 err=0 text=
Apr 10 11:47:16 er slapd[5247]: [ID 902418 local4.debug] conn=1 op=1 SRCH
base="
dc=orcsoftware,dc=com" scope=2 filter="(uid=erik)"
Apr 10 11:47:16 er slapd[5247]: [ID 925615 local4.debug] <=
bdb_equality_candida
tes: (uid) index_param failed (18)
Apr 10 11:47:16 er slapd[5247]: [ID 362707 local4.debug] conn=1 op=1 SEARCH
RESU
LT tag=101 err=0 nentries=1 text=
Apr 10 11:47:16 er slapd[5247]: [ID 347666 local4.debug] conn=1 op=2 BIND
dn="ui
d=erik,ou=People,dc=orcsoftware,dc=com" method=128
Apr 10 11:47:16 er slapd[5247]: [ID 217296 local4.debug] conn=1 op=2 RESULT
tag=
97 err=49 text=
Apr 10 11:47:16 er slapd[5247]: [ID 347666 local4.debug] conn=1 op=3 BIND
dn=""
method=128
Apr 10 11:47:16 er slapd[5247]: [ID 217296 local4.debug] conn=1 op=3 RESULT
tag=
97 err=0 text=
Apr 10 11:47:16 er slapd[5247]: [ID 338319 local4.debug] conn=1 op=4 UNBIND
Apr 10 11:47:16 er slapd[5247]: [ID 850449 local4.debug] conn=1 fd=12 closed

On BSD box I have pam.conf and ldap.conf like this.

/etc/pam.conf

login   auth    sufficient      pam_skey.so
login   auth    sufficient      pam_opie.so
no_fake_prompts
login   auth    requisite       pam_cleartext_pass_ok.so
login   auth    required        pam_ldap.so
login   account required        pam_ldap.so
login   password required       pam_permit.so
login   session required        pam_permit.so

/etc/ldap.conf

host 172.27.1.12
base dc=orcsoftware,dc=com

On the LDAP server I have entry

# erik, People, orcsoftware.com
dn: uid=erik,ou=People,dc=orcsoftware,dc=com
uid: erik
cn: Erik Ericsson
givenName: Erik
sn: Ericsson
mail: erik@orcsoftware.com
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
loginShell: /bin/tcsh
uidNumber: 100
gidNumber: 410
homeDirectory: /home/erik
gecos: Erik Ericsson
userPassword:: e1NNRDV9TUZhcC9IZXdGS0IyQndqL0MrT1d0VXZoOXJzPQ==

Would be appreciate for any hint.

Sincerely,
Alexei Monastyrnyi,
System Engineer,
Orc Software AB.
Birger Jarlsgatan 32A Box 7742   Reception   +46 8 407 38 00
SE-103 95 Stockholm Sweden      Fax              +46 8 407 38 01
www.orcsoftware.com                 Direct          +46 8 407 38 02
alexeim@orcsoftware.com           Mobile        +46 70 377 5777