Thank you. I was able to establish connectivity again after disabling the firewall. <div class="gmail_quote">On Wed, Nov 26, 2008 at 4:09 PM, Simo Sorce <<a href="mailto:ssorce@redhat.com">ssorce@redhat.com</a>> wrote: <blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div></div><div class="Wj3C7c">On Fri, 2008-11-21 at 18:57 +0100, Edward Popoola wrote: > Hello all, > > I just joined this list and I was wondering if anyone could help with > my problem or provide a link to a similar discussion if it has been > held before. > > I successfully installed the redhat IPA on the server and on one > client for starters. On the server, after creating ipa users through > the web interface, I'm able to switch to the new ipa user (i had to > edit the add the pam_mkdir module in the login and su pam.d files) > > However trying to switch user from the ipa-client is telling me > 'account does not exist' ... > > Part of my /etc/nsswitch file on the client and on the server has the > entry > . > passwd: files ldap > shadow: files ldap > group: files ldap > > The log file on the ipa-client is given below: > > Nov 21 14:12:33 phbdnssrv su: nss_ldap: failed to bind to LDAP server > ldap://<a href="http://ipaserver.mydomain.com" target="_blank">ipaserver.mydomain.com</a>: Can't contact LDAP server > Nov 21 14:12:33 phbdnssrv su: nss_ldap: could not search LDAP server - > Server is unavailable > Nov 21 15:44:49 phbdnssrv su: nss_ldap: failed to bind to LDAP server > ldap://<a href="http://ipaserver.mydomain.com" target="_blank">ipaserver.mydomain.com</a>: Can't contact LDAP server > Nov 21 15:44:49 phbdnssrv su: nss_ldap: could not search LDAP server - > Server is unavailable </div></div>You probably have network issues or a firewall blocking your access to the ldap server. Simo. -- Simo Sorce * Red Hat, Inc * New York </blockquote></div> -- Edward Popoola (RHCE, SCSA, C|EH)