[K12OSN] OT - Can't authenticate Ubuntu 8.04 to LDAP

Rob Owens rowens at ptd.net
Sun Sep 21 20:03:43 UTC 2008 

To fix your slow login problem, edit /etc/nsswitch.conf and remove all instances of the word "ldap".  That should do it.  But before you do, make sure you have a terminal open as the root user.  That way after you make the changes and test it out (in another terminal), if it doesn't work you can still use your original root terminal to undo the changes you made to nsswitch.conf.

-Rob

On Sat, Sep 20, 2008 at 12:32:00PM -0700, Carl Keil wrote:
> Thanks for the tip Todd.  I'll try that when I go in on Monday.  Do you 
> know any way to "wipe the LDAP login slate clean" on the client?  I've 
> edited a bunch of conf files.  When I simply comment out the ldap lines 
> that I've added then I can't log in at all (except as root/recovery) to 
> uncomment them out again.  Then, I can log in again, but the login 
> process is super slow (minutes).  It got slow when I first edited those 
> files.  It's only allowing local logins (accounts created on the 
> client), but it feels like it's trying to do an LDAP thing too and I 
> have to wait for some sort of timeout from LDAP and maybe from the /home 
> export before the computer gets going. 
> 
> I was sloppy and in a hurry when I first edited those files.  I should 
> have made backups and kept a log of what I was doing, but I didn't.  Is 
> there any way to recreate the default conf files for pam and libnss and 
> all that stuff?  I'm getting the feeling I need to reinstall Ubuntu on 
> that box and really start over.  It's a drag, because I did a bunch of 
> other configuring on that box to make it my workstation (dual monitors, 
> etc., etc.).
> 
> Thanks,
> 
> ck
> 
> 
> >You should be able to run ldapsearch from the client by specifying the
> >server. I think the command is
> >
> >ldapsearch -H hosturl -D bindname -W
> >
> >but I don't have access to an LDAP server to check that at the moment.
> >
> >On Fri, Sep 19, 2008 at 8:40 PM, Carl Keil <carl at snarlnet.com> wrote:
> >
> >  
> >>> Hey Folks,
> >>>
> >>> I've been trying for weeks to set up an LDAP server.  I've got the 
> >>feeling
> >>> that they LDAP server is working, but I'm not sure.  I am sure that I 
> >>can't
> >>> get my Ubuntu 8 test client to authenticate from it.  Is there anything 
> >>like
> >>> a troubleshooting procedure for this?  Is there a way to test my 
> >>connection
> >>> to the server from the client short of rebooting and trying to log in?
> >>>  (Make sure I'm not having firewall, dns, etc. issues?)
> >>> Also, I kindof think my test client is fairly hosed from all the conf 
> >>file
> >>> editing I've done.  I've tried uninstalling ldap-auth-config and
> >>> reinstalling it, but it doesn't ask me questions when I reinstall.  Is 
> >>there
> >>> a procedure for "resetting" all the files that pertain to logging in 
> >>(the
> >>> stuff in pam.d, etc.), so that I can try reconfiguring for LDAP
> >>> authentication from scratch again?  Right now my client takes forever 
> >>to log
> >>> in (locally), so testing is a real pain.
> >>> Any help would be appreciated.
> >>>
> >>> Thanks,
> >>>
> >>> ck
> 
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>

More information about the K12OSN mailing list