[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ssh with ldap authentication

To: openldap-technical@openldap.org
Subject: Re: ssh with ldap authentication
From: Tim Watts <tw@dionic.net>
Date: Tue, 05 Mar 2013 19:49:25 +0000
In-reply-to: <0971982CF6B9AB418FFD5FEF7F50CB9F05CB2DCB@IAD-WPRD-XCHB03.corp.verio.net>
References: <0971982CF6B9AB418FFD5FEF7F50CB9F05CB2DCB@IAD-WPRD-XCHB03.corp.verio.net>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130106 Thunderbird/17.0.2

On 05/03/13 19:16, Rodney Simioni wrote:

Hi,

I’m new to LDAP.  I just created a new user in LDAP and it cannot login
through ssh. It keeps prompting for the password. Any help will be
greatly appreciated.


Hi Rodney,

There are a million ways ssh auth can fail - bad sshd_config, bad PAMconfig, bad LDAP client config, LDAP server side problem.


Best to try to test the LDAP authentication first.

can you try something like (on one line)

ldapwhoami -H ldap://your.ldap.server -x -W -Duid=dude12,ou=people,dc=wh,dc=local


Enter the password when prompted and if it replies with

dn:uid=dude12,ou=people,dc=wh,dc=local

Then that bit works...

Then see if

getent passwd

on the client returns a list of uses with dude12 in.

Then post your pam configs and pam_ldap.conf and libnss_ldap.conf (orequivalent according to distro).


--
Tim Watts
Personal Blog:                          http://squiddy.blog.dionic.net/

http://www.sensorly.com/ Crowd mapping of 2G/3G/4G mobile signal coverage

Follow-Ups:
- Re: ssh with ldap authentication
  - From: Joe Phan <joeanhphan@yahoo.com>

References:
- ssh with ldap authentication
  - From: "Rodney Simioni" <rodney.simioni@verio.net>

Prev by Date: ssh with ldap authentication
Next by Date: Re: ssh with ldap authentication
Index(es):
- Chronological
- Thread