[K12OSN] Re: K12OSN LTSP and LDAP auth probs

Bob Mead bmead at lane.k12.or.us
Wed Jan 7 23:29:50 UTC 2009


Dan:
Thanks for the input. My LTSP box has several /var/log/secure(.1 .2 etc) 
but not on the ldap server.  :( Any other thoughts on where to look?

Thanks again,
    ~bob
> Message: 1
> Date: Thu, 18 Dec 2008 09:09:43 -0800
> From: "Dan Young" <dyoung at mesd.k12.or.us>
> Subject: Re: [K12OSN] LTSP and LDAP auth probs
> To: "Support list for open source software in schools."
> 	<k12osn at redhat.com>
> Message-ID:
> 	<994441ae0812180909g51bb9fk11c8d4750f67a695 at mail.gmail.com>
> Content-Type: text/plain; charset=ISO-8859-1
>
> 2008/12/18 Bob Mead <bmead at lane.k12.or.us>:
>   
>> The TC gets to a login screen and then will not let me authenticate
>> (Authentication Failed). Is there anyplace on the LDAP server that I can
>> monitor authentication requests to see where its failing? I tried
>> tailing /var/log/messages with no luck. Any help would be greatly
>> appreciated!!
>>     
>
> /var/log/secure?
>
> --
> Dan Young <dyoung at mesd.k12.or.us>
> Multnomah ESD - Technology Services
> 503-257-1562
>
>
>   
>   
Brian: 
> Thanks for your input: I tried getent passwd and got a long list of 
> users - so its probably *not* a binding problem. Any other thoughts 
> and/or could you direct me to which wiki you referred to (below).

Thanks again,
    ~bob
> Message: 3
> Date: Thu, 18 Dec 2008 18:09:34 +0000
> From: Brian Chivers <brian at portsmouth-college.ac.uk>
> Subject: Re: [K12OSN] LTSP and LDAP auth probs
> To: "Support list for open source software in schools."
> 	<k12osn at redhat.com>
> Message-ID: <494A91DE.3040906 at portsmouth-college.ac.uk>
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>
> Bob Mead wrote:
>   
>> Hello all:
>>
>> Ok, now that I've got my TC booting (thanks again to Barry and
>> Almquist), I've gotten /home dirs nfs mounted from a remote server and I
>> used authconfig to setup LDAP authentication from our LDAP server using
>> the following command:
>>
>> authconfig --enableldap --enablemd5 --update
>>
>> I have edited /etc/ldap.conf to enter the distinguished name of the
>> search base as follows:
>> base dc=slane,dc=k12,dc=or,dc=us
>>
>> And the 'Your LDAP server' section has this entry:
>> host ldap.slane.k12.or.us
>>
>> I also added the following lines copied from our current ltsp server's
>> /etc/ldap.conf file:
>> ssl no
>> tls_cacertdir /etc/openldap/cacerts
>> pam_password md5
>> uri ldap://oak/ (this line was generated by authconfig using the
>> '--ldapserver=oak' option on a previous run through)
>>
>> These are the only uncommented lines in ldap.conf.
>>
>> The TC gets to a login screen and then will not let me authenticate
>> (Authentication Failed). Is there anyplace on the LDAP server that I can
>> monitor authentication requests to see where its failing? I tried
>> tailing /var/log/messages with no luck. Any help would be greatly
>> appreciated!!
>>
>> Thanks,
>>     ~bob
>>
>>
>> _______________________________________________
>> K12OSN mailing list
>> K12OSN at redhat.com
>> https://www.redhat.com/mailman/listinfo/k12osn
>> For more info see <http://www.k12os.org>
>>     
>
> I find it useful to try getent passwd to list all the users and then see 
> how you get on. If you only get a few users it's a binding problem. I 
> can give you more info tomorrow when I'm back in work & have acess to my 
> wiki notes.
>
>   

-------------- next part --------------
A non-text attachment was scrubbed...
Name: bmead.vcf
Type: text/x-vcard
Size: 199 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/k12osn/attachments/20090107/f6a9f036/attachment.vcf>


More information about the K12OSN mailing list