[Techtalk] Re: [Newchix] OpenLDAP Client configuration???? no clue

Karina khould at technicaldirection.com.au
Tue Oct 26 15:43:39 EST 2004

ohhhhhhhhhhhhhhhhh..... thank you Devdas I appreciate your help here... 
I am feeling kind of like a dunce though...

Devdas Bhagat wrote:

>For a local Linux login, the file /etc/pam.d/login is used.
>On my system, this contains:
>$cat /etc/pam.d/login
>auth       required     /lib/security/pam_securetty.so
>auth       required     /lib/security/pam_stack.so service=system-auth
>auth       required     /lib/security/pam_nologin.so
>account    required     /lib/security/pam_stack.so service=system-auth
>password   required     /lib/security/pam_stack.so service=system-auth
>session    required     /lib/security/pam_stack.so service=system-auth
>session    optional     /lib/security/pam_console.so

>Try to authenticate to the LDAP server with the commandline LDAP client.
>$ldapsearch -d 9 -D "some=user,dn" -x -W -b "basedn=goes,here" objectclass=*
using the command above I have
ldap_bind: Invalid credentials (49)
the exact command I am using is

$ldapsearch -h "LDAPserverIPaddress" -d 9 -D "cn=khould,o=UTS" -x -W -b 
"o=UTS" objectclass=*

if i do not add the IP address I get the message " ldap_bind: can't 
connect to LDAP server (-1)"

I know my linux box is searching for the server,
the above command indicates that I am connected

tcpdump -Aevv host "ipaddress" gives me lots of connections info...

slapd.conf I have not modified this file at all

ldap.conf I have modified through the GUI "YaST" and appropriate DN 
baseDN and admin details are entered

and nsswitch.conf I have modified to change from
passwd: ldap
group: ldap
shadow: ldap
passwd: files ldap
group: files ldap
shadow: files ldap

not too sure if that makes a difference

I know ldap is working, my e-mails search ldap for users is ok, and I am 
getting connected messages with the above command.

UTS CRICOS Provider Code:  00099F
DISCLAIMER: This email message and any accompanying attachments may contain
confidential information.  If you are not the intended recipient, do not
read, use, disseminate, distribute or copy this message or attachments.  If
you have received this message in error, please notify the sender immediately
and delete this message. Any views expressed in this message are those of the
individual sender, except where the sender expressly, and with authority,
states them to be the views the University of Technology Sydney. Before
opening any attachments, please check them for viruses and defects.

More information about the Techtalk mailing list