bind timeout.
Anthony BERGER
anthony.berger at cea.fr
Tue Dec 18 11:21:09 UTC 2007
hello
How can i reduce the time which the pam_ldap.so return
service_unavailable. (i would like to use pam_ccreds to authenticate the
user on a local database after the unavailable of the ldap service)
this is my pam_ldap.conf :
/
base dc=nix,dc=intra,dc=cea,dc=fr
uri ldaps://ldapserver1.xxx.yyy.zz/ ldaps:////ldapserver2.xxx.yyy.zz///
ldap_version 3
scope sub
timelimit 2
bind_timelimit 2
bind_policy soft
idle_timelimit 3600
pam_filter objectclass=posixAccount
pam_login_attribute uid
pam_filter |(host=host.xxx.yyy.zz)(host=GRP_all)
pam_login_attribute uid
pam_password md5
nss_base_passwd ou=People,dc=nix,dc=intra,dc=cea,dc=fr?sub
nss_base_shadow ou=People,dc=nix,dc=intra,dc=cea,dc=fr?sub
nss_base_group ou=Group,dc=nix,dc=intra,dc=cea,dc=fr?sub
ssl on
tls_checkpeer no
tls_cacert /etc/ldap/ssl/CA.pem/
Thank you in advance
Anthony
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pam-list/attachments/20071218/0a7db518/attachment.htm>
More information about the Pam-list
mailing list