[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Authenticating via LDAP to Active Directory



Davis, Jared Scott wrote:
In /var/log/messages:
"sshd: pam_ldap: ldap_simple_bind Can't contact LDAP server"


So PAM can't talk to the LDAP server. Double check the values in /etc/ldap.conf. ldapsearch uses /etc/openldap/ldap.conf and PAM uses /etc/ldap.conf so check the sym-link.

Monitor the network traffic using wireshark/ethereal to see what is happening between your client and the LDAP server. Is it setup correctly to handle LDAPS? Since you mention certs. I presume you are required to use LDAPS, it makes diagnosing problems harder because all the requests are encrypted. How is your LDAP server specified in ldap.conf, host/port or uri?

--
Nigel Wade, System Administrator, Space Plasma Physics Group,
            University of Leicester, Leicester, LE1 7RH, UK
E-mail :    nmw ion le ac uk
Phone :     +44 (0)116 2523548, Fax : +44 (0)116 2523555



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]