[Freeipa-users] FreeIPA for Linux desktop deployment

Jakub Hrozek jhrozek at redhat.com
Mon May 16 08:23:28 UTC 2011 

On 05/15/2011 06:49 AM, nasir nasir wrote:
> Thanks again!
> 
> NO, it was not set. I added it manually now (*automount:  ldap *) and
> now a different error pops up in /var/log/messages while restarting
> autofs service,
> 
> *May 15 06:32:04 hugayat automount[16256]: open_lookup:90: cannot open
> lookup module ldap (/usr/lib/autofs/lookup_ldap.so: undefined symbol:
> ERR_remove_state)*
> *May 15 06:32:04 hugayat automount[16256]: lookup_nss_read_master:
> auto.master not found, replacing '.' with '_'*
> *May 15 06:32:04 hugayat automount[16256]: open_lookup:90: cannot open
> lookup module ldap (/usr/lib/autofs/lookup_ldap.so: undefined symbol:
> ERR_remove_state)*
> *May 15 06:32:04 hugayat automount[16256]: no mounts in table*
> 
> Quick googling shows that it was part of a bug in earlier version of
> autofs(5.0.3) but later fixed. Mine is autofs *autofs-5.0.5-29.el6.i686*
> *
> *
> Also, the symbol *ERR_remove_state *is part of openssl right ? following
> is my output of ldd command of lookup_ldap.so,

I think you ran into https://bugzilla.redhat.com/show_bug.cgi?id=579963

The ERR_remove_state call was removed in autofs-5.0.5-30.el6. I did a
quick test with that version and seemed to work fine.

As per the configuration, the necessary steps are:
1) edit /etc/nsswitch.conf and put "automount: ldap". It is also OK to
configure more sources such as "automount: files ldap".

2) edit /etc/sysconfig/autofs
You'll want to specify at least LDAP_URI and SEARCH_BASE according to
your server environment. In order for the correct attributes to be
searched for, you also need to uncomment the last set of attribute mappings:

MAP_OBJECT_CLASS="automountMap"
ENTRY_OBJECT_CLASS="automount"
MAP_ATTRIBUTE="automountMapName"
ENTRY_ATTRIBUTE="automountKey"
VALUE_ATTRIBUTE="automountInformation"

3) service autofs restart

If things still don't work, the logs should tell us more. If you run
autofs with -v -d it would even list the exact mount invocation, which
could be useful to determine the exact problem.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20110516/a1dbcd04/attachment.sig>

More information about the Freeipa-users mailing list