Well I upgraded to ubuntu 7.10 and discovered there is a pretty critical bug that causes boot to hang waiting for ldap. So i put it aside for now, but obviously I'd like to get this working in the near future.<br><br>ldap.conf
contains:<br># The distinguished name of the search base.<br>base dc=humboldt,dc=edu<br><br># Another way to specify your LDAP server is to provide an<br>uri ldapi://lb1.humboldt.edu/<br># Unix Domain Sockets to connect to a local LDAP Server.
<br>#uri ldap://127.0.0.1/<br>#uri ldaps://127.0.0.1/ <br>#uri ldapi://%2fvar%2frun%2fldapi_sock/<br># Note: %2f encodes the '/' used as directory separator<br><br># The LDAP version to use (defaults to 3<br># if supported by client library)
<br>ldap_version 3<br><br><div class="gmail_quote">
On Nov 28, 2007 12:45 PM, Darin Perusich <<a href="mailto:Darin.Perusich@cognigencorp.com" target="_blank">Darin.Perusich@cognigencorp.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Can you send a copy of /etc/ldap.conf and /etc/openldap/ldap.conf?<br><div><div></div><div><br>Jon Skulski wrote:<br>> Hello,<br>><br>> I'm trying to (eventually) authorize my linux box against an
<br>> ldap/kerberos setup. I am having some trouble. I can talk to the ldap<br>> server fine with ldaptools. The problem is where nss comes in. getent<br>> passwd will only list local entries in passwd. Yes I have
nssswitch.conf<br>> configured correctly. I have it configured so correctly that if I listen<br>> to the network traffic I can actually see the ldap request and response,<br>> but for some reason NSS ignores it.
<br>
><br>> Interesting behaviors:<br>><br>> - only local users and groups are listed by getent<br>> - NSS is ignoring the ldap response<br>> - the ldap response is very very large, so i thought that might be it. i
<br>> tried using a smaller base search (only me) and it still ignored the result.<br>> - strace of getent does not show anything unusual<br>> - now whenever I log in or sudo or anything, i have to enter my password
<br>> twice. the first time is thrown out, whether right or wrong. this may<br>> have more to do with an incomplete setup of pam.<br>><br>> oh yeah this is all on ubuntu 7.04 fresh install. and i'm about to
<br>> upgrade to 7.10 because well, i'm out of ideas.<br>><br>> Anyway, I would really like to get this working because if i don't<br>> they'll make me use windows to develop a php application :O SAVE ME LUG!
<br>><br>><br>><br>><br></div></div>> ------------------------------------------------------------------------<br>><br>> _______________________________________________<br>> nflug mailing list<br>
>
<a href="mailto:nflug@nflug.org" target="_blank">nflug@nflug.org</a><br>> <a href="http://www.nflug.org/mailman/listinfo/nflug" target="_blank">http://www.nflug.org/mailman/listinfo/nflug</a><br><br>--<br>Darin Perusich
<br>Unix Systems Administrator
<br>Cognigen Corporation<br>395 Youngs Rd.<br>Williamsville, NY 14221<br>Phone: 716-633-3463<br>Email: <a href="mailto:darinper@cognigencorp.com" target="_blank">darinper@cognigencorp.com</a><br>_______________________________________________
<br>nflug mailing list<br><a href="mailto:nflug@nflug.org" target="_blank">nflug@nflug.org</a><br><a href="http://www.nflug.org/mailman/listinfo/nflug" target="_blank">http://www.nflug.org/mailman/listinfo/nflug</a><br></blockquote>
</div>
<br>