[Fedora-directory-users] ssh login fail
Steven Jones
Steven.Jones at vuw.ac.nz
Mon Sep 10 22:47:05 UTC 2007
8><----
>
> The log now shows,
>
> 8><-----
> PosixAccount)(uid=root))" attrs=ALL
> [11/Sep/2007:10:01:01 +1200] conn=200 op=2 RESULT err=32 tag=101
> nentries=0 etime=0
> [11/Sep/2007:10:01:01 +1200] conn=200 op=2 RESULT err=32 tag=101
> nentries=0 etime=0
> [11/Sep/2007:10:01:01 +1200] conn=200 op=3 SRCH
> base="ou=Group,dc=cognifide,dc=pl" scope=2
> filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="gidNumber"
> [11/Sep/2007:10:01:01 +1200] conn=200 op=3 RESULT err=32 tag=101
> nentries=0 etime=0
> [11/Sep/2007:10:01:01 +1200] conn=200 op=3 RESULT err=32 tag=101
> nentries=0 etime=0
> [11/Sep/2007:10:01:01 +1200] conn=200 op=-1 fd=67 closed error 104
> (Connection reset by peer) - TCP connection reset by peer.
>
> So pam is now actually querying the LDAP server it seems, it is not
> getting it right but it's a small step.
>
err=32 means no such object. That is, ou=Group,dc=cognifide,dc=pl does
not exist. In your file above, you have
suffix "dc=vuw,dc=ac,dc=nz"
Do you have ou=Groups,dc=vuw,dc=ac,dc=nz ?
I have no idea....I suspect not, need an English explanation on some of
this stuff...Fedora has a nice gui but it hides things so trying to
determine if the test user is in the right "place" for the external
query would seem an issue...
Is there a command line syntax to run to see if I get a positive
password return?
Regards
Steven
More information about the Fedora-directory-users
mailing list