[K12OSN] OT - Almost there with smbldap authentication
Rob Owens
rob.owens at biochemfluidics.com
Thu Oct 2 14:37:04 UTC 2008
I can't answer your question, but I suggest that you either 1) test this
with your firewall turned off, or 2) check your firewall logs to see if
you can identify any traffic being blocked.
-Rob
Carl Keil wrote:
> Hey Folks,
>
> I solved my previous problem (not able to query the LDAP server from the
> client). I think it was a combination of not having the "URI"
> configured for my subnet (it was ldap://127.0.0.1/ in all the LDAP conf
> files) and not having the proper holes punched in my firewall on the
> server.
>
> I think I'm still having a firewall issue though. I'm getting an error
> that says that the "Gnome setting daemon" is timing out and that some
> settings might not work (after a very loooong login time). When it
> finally logs in I'm indeed getting my /home folder from the server and
> authenticating the user off the server. But the login performance and
> error message are unacceptable. I'm so close.
>
> Can someone please:
>
> A) tell me what ports need to be open (UDP or TCP) for this whole LDAP
> authentication and NFS home directory exporting business to work? and
> B) could something else besides the firewall being misconfigured be
> causing this problem?
>
> I've got ports 389, 2049, 139 and 445 open for TCP and 137 and 138 open
> for UDP. These are just open for the subnet that the clients are
> logging in from. There's a few other open ports, but I'm pretty sure
> they're irrelevant. (80, 22, 25).
>
> Thanks so much for all the help so far (and hopefully a little bit more
> to get me established with the smbldap configuring).
>
> ck
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
********************************************************
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. If you are not the addressee, any disclosure, reproduction,
copying, distribution, or other dissemination or use of this transmission in
error please notify the sender immediately and then delete this e-mail.
E-mail transmission cannot be guaranteed to be secure or error free as
information could be intercepted, corrupted lost, destroyed, arrive late or
incomplete, or contain viruses.
The sender therefore does not accept liability for any errors or omissions
in the contents of this message which arise as a result of e-mail
transmission. If verification is required please request a hard copy
version.
********************************************************
More information about the K12OSN
mailing list