Authenticating via LDAP to Active Directory
Nigel Wade
nmw at ion.le.ac.uk
Fri Feb 23 10:21:54 UTC 2007
Davis, Jared Scott wrote:
> In /var/log/messages:
> "sshd: pam_ldap: ldap_simple_bind Can't contact LDAP server"
>
So PAM can't talk to the LDAP server. Double check the values in
/etc/ldap.conf. ldapsearch uses /etc/openldap/ldap.conf and PAM uses
/etc/ldap.conf so check the sym-link.
Monitor the network traffic using wireshark/ethereal to see what is
happening between your client and the LDAP server. Is it setup correctly
to handle LDAPS? Since you mention certs. I presume you are required to
use LDAPS, it makes diagnosing problems harder because all the requests
are encrypted. How is your LDAP server specified in ldap.conf, host/port
or uri?
--
Nigel Wade, System Administrator, Space Plasma Physics Group,
University of Leicester, Leicester, LE1 7RH, UK
E-mail : nmw at ion.le.ac.uk
Phone : +44 (0)116 2523548, Fax : +44 (0)116 2523555
More information about the redhat-list
mailing list