[Techtalk] Re: [Newchix] OpenLDAP Client configuration???? no clue
khould at technicaldirection.com.au
Tue Oct 26 15:43:39 EST 2004
ohhhhhhhhhhhhhhhhh..... thank you Devdas I appreciate your help here...
I am feeling kind of like a dunce though...
Devdas Bhagat wrote:
>For a local Linux login, the file /etc/pam.d/login is used.
>On my system, this contains:
>auth required /lib/security/pam_securetty.so
>auth required /lib/security/pam_stack.so service=system-auth
>auth required /lib/security/pam_nologin.so
>account required /lib/security/pam_stack.so service=system-auth
>password required /lib/security/pam_stack.so service=system-auth
>session required /lib/security/pam_stack.so service=system-auth
>session optional /lib/security/pam_console.so
>Try to authenticate to the LDAP server with the commandline LDAP client.
>$ldapsearch -d 9 -D "some=user,dn" -x -W -b "basedn=goes,here" objectclass=*
using the command above I have
ldap_bind: Invalid credentials (49)
the exact command I am using is
$ldapsearch -h "LDAPserverIPaddress" -d 9 -D "cn=khould,o=UTS" -x -W -b
if i do not add the IP address I get the message " ldap_bind: can't
connect to LDAP server (-1)"
I know my linux box is searching for the server,
the above command indicates that I am connected
tcpdump -Aevv host "ipaddress" gives me lots of connections info...
slapd.conf I have not modified this file at all
ldap.conf I have modified through the GUI "YaST" and appropriate DN
baseDN and admin details are entered
and nsswitch.conf I have modified to change from
passwd: files ldap
group: files ldap
shadow: files ldap
not too sure if that makes a difference
I know ldap is working, my e-mails search ldap for users is ok, and I am
getting connected messages with the above command.
UTS CRICOS Provider Code: 00099F
DISCLAIMER: This email message and any accompanying attachments may contain
confidential information. If you are not the intended recipient, do not
read, use, disseminate, distribute or copy this message or attachments. If
you have received this message in error, please notify the sender immediately
and delete this message. Any views expressed in this message are those of the
individual sender, except where the sender expressly, and with authority,
states them to be the views the University of Technology Sydney. Before
opening any attachments, please check them for viruses and defects.
More information about the Techtalk