[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP defined groups not set properly over ssh

To: Olivier Eymere <liv@intergate.ca>
Subject: Re: LDAP defined groups not set properly over ssh
From: Tony Earnshaw <tonye@billy.demon.nl>
Date: Sat, 27 Mar 2004 13:40:25 +0100
Cc: Openldap list <openldap-software@OpenLDAP.org>
In-reply-to: <200403270002.14491.liv@intergate.ca>
Organization: Billy
References: <200403270002.14491.liv@intergate.ca>

lør, 27.03.2004 kl. 09.02 skrev Olivier Eymere:
[...]

> So, it simply appears that logging in over ssh only sets the groups that are 
> defined locally in /etc/group and does not set any groups defined elsewhere.  
> It appears that everything is configured properly and the groups do get set 
> properly when methods other than ssh are used to login.  Does anyone have an 
> idea how to change this?

RedHat RHEL3, Openldap 2.2.7.

I have user tonni both in /etc/passwd and in /etc/group. He's also an
ldap user, though his primary LDAP group is different from /etc/passwd
and /etc/group, and in LDAP he's also a member of the group wheel. I've
notced that if I don't have nsswitch set to 'group ldap files' (i.e. if
it's 'group files ldap') he doesn't get wheel privileges, even though
'getent group tonni' shows him as a member of wheel..

That might help you, and it might not :)
-- 

mail: billy - at - billy.demon.nl
http://www.billy.demon.nl

References:
- LDAP defined groups not set properly over ssh
  - From: Olivier Eymere <liv@intergate.ca>

Prev by Date: help, how can i manage ACL in slapd.conf
Next by Date: Re: help, how can i manage ACL in slapd.conf
Index(es):
- Chronological
- Thread