Centralized LDAP Authentication usingOpenLDAP+OpenSSH+nss_ldap+pam_ldap

Tay, Gary Gary_Tay at platts.com
Mon Nov 29 02:20:49 UTC 2004 

Asif,

I think you "ldaplist" has nothing to do with PAM issue. 

Kindly pls re-post your issue to OpenLDAP software maillist, pls always
always always remember to provide some basic informations. You need NOT
copy me, if I have the free time I will reply, otherwise you have the
potential reply from many others.

1) OS/Version/releases: output of "uname -a; cat /etc/*release"
2) OpenLDAP release: output of "slapd -V" and/or
"/usr/local/bin/ldapsearch -V"
3) Content of related config files: for your case here, 
3.1) /var/ldap/ldap_client_file
3.2) /var/ldap/ldap_client_cred
3.3) slapd.conf
3.4) ldap.conf
3.5) your TOP level LDAP data .ldif import file
(Pls replace actual password with meaningless stuff)

Rgds
Gary

-----Original Message-----
From: pam-list-bounces at redhat.com [mailto:pam-list-bounces at redhat.com]
On Behalf Of Asif Iqbal
Sent: Monday, November 29, 2004 10:02 AM
To: pam-list at redhat.com; Gary Tay Teng Teck
Subject: Re: Centralized LDAP Authentication
usingOpenLDAP+OpenSSH+nss_ldap+pam_ldap


Gary,

Also I were unable to add this DN

adding new entry "cn=sol8profile,ou=profile,dc=qwestip,dc=net"
ldap_add: Object class violation (65)
        additional info: no structural object class provided


I copied exactly the ldif you have in your web page

On Sun, Nov 28, 2004 at 08:51:55PM, Asif Iqbal wrote:
> Hi Gary
> 
>  	
> getent passwd iqbala - works perfect
> 
> I am almost done. This is where I stuck
> (almost at the end)
> 
> ldaplist -l passwd iqbala
> 
> ldaplist: Object not found
> 
> 
> cat /var/adm/ldap.log
> 
> Nov 28 20:46:30 sysldap slapd[1607]: [ID 848112 local4.debug] conn=23 
> fd=15 ACCEPT from IP=208.47.0.72:33428 (IP=0.0.0.0:389) Nov 28 
> 20:46:30 sysldap slapd[1607]: [ID 998954 local4.debug] conn=23 op=0 
> SRCH base="ou=people,dc=qwestip,dc=net" scope=1 deref=3 
> filter="(&(objectClass=posixAccount)(uid=iqbala))"
> Nov 28 20:46:30 sysldap slapd[1607]: [ID 362707 local4.debug] conn=23 
> op=0 SEARCH RESULT tag=101 err=13 nentries=0 text=TLS confidentiality 
> required Nov 28 20:46:30 sysldap slapd[1607]: [ID 338319 local4.debug]

> conn=23 op=1 UNBIND
> Nov 28 20:46:30 sysldap slapd[1607]: [ID 952275 local4.debug] conn=23
> fd=15 closed
> 
> 
> Let me know if you have a trick for this. BTW thank you so much your 
> instructions
> 
> On Tue, Nov 09, 2004 at 10:19:17AM, Asif Iqbal wrote:
> > On Sun, Sep 19, 2004 at 02:05:00AM, Gary Tay Teng Teck wrote:
> > > List subscibers,
> > > 
> > > For the benefits of  those learners/newbies who are looking for a 
> > > HOWTO
> > > w.r.t. the subject, please visit:
> > > http://web.singnet.com.sg/~garyttt/
> > > 
> > 
> > Hi Gary
> > 
> > Do you have the following two articleis in non-HTML, preferrably TXT

> > format?
> > 
> > Installing and Configuring OpenLDAP for Solaris9
> > Installing and Configuring OpenSSH with pam_ldap for Solaris9
> > 
> > These are excellent articles and I am hoping these are all I need to

> > setup my OpenLDAP+OpenSSH+Solaris9
> > 
> > Thanks for sharing it
> > 
> > > If it takes you less than two weeks to setup and on the way you 
> > > learn
> > > something, I am happy to see that.
> > > 
> > > Rgds
> > > Gary
> > > 
> > > 

-- 
Asif Iqbal
PGP Key: 0xE62693C5 KeyServer: pgp.mit.edu
"...it said: Install Windows XP or better...so I installed Solaris..."

_______________________________________________
Pam-list mailing list
Pam-list at redhat.com https://www.redhat.com/mailman/listinfo/pam-list

More information about the Pam-list mailing list