[K12OSN] LTSP and LDAP auth probs
Brian Chivers
brian at portsmouth-college.ac.uk
Thu Dec 18 18:09:34 UTC 2008
Bob Mead wrote:
> Hello all:
>
> Ok, now that I've got my TC booting (thanks again to Barry and
> Almquist), I've gotten /home dirs nfs mounted from a remote server and I
> used authconfig to setup LDAP authentication from our LDAP server using
> the following command:
>
> authconfig --enableldap --enablemd5 --update
>
> I have edited /etc/ldap.conf to enter the distinguished name of the
> search base as follows:
> base dc=slane,dc=k12,dc=or,dc=us
>
> And the 'Your LDAP server' section has this entry:
> host ldap.slane.k12.or.us
>
> I also added the following lines copied from our current ltsp server's
> /etc/ldap.conf file:
> ssl no
> tls_cacertdir /etc/openldap/cacerts
> pam_password md5
> uri ldap://oak/ (this line was generated by authconfig using the
> '--ldapserver=oak' option on a previous run through)
>
> These are the only uncommented lines in ldap.conf.
>
> The TC gets to a login screen and then will not let me authenticate
> (Authentication Failed). Is there anyplace on the LDAP server that I can
> monitor authentication requests to see where its failing? I tried
> tailing /var/log/messages with no luck. Any help would be greatly
> appreciated!!
>
> Thanks,
> ~bob
>
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
I find it useful to try getent passwd to list all the users and then see
how you get on. If you only get a few users it's a binding problem. I
can give you more info tomorrow when I'm back in work & have acess to my
wiki notes.
Brian
------------------------------------------------------------------------------------------------
The views expressed here are my own and not necessarily
the views of Portsmouth College
More information about the K12OSN
mailing list