[prev in list] [next in list] [prev in thread] [next in thread]
List: pamldap
Subject: Re: [pamldap] pam_ldap: ldap_simple_bind: Can't contact ldap server
From: Lara Adianto <m1r4cle_26 () yahoo ! com>
Date: 2004-06-30 4:48:52
Message-ID: 20040630044852.50710.qmail () web50202 ! mail ! yahoo ! com
[Download RAW message or body]
Can the solaris ldap client be used to connect to
openldap server ? I don't have openldap client on the
solaris machine...Could this be the cause my problem ?
hope somebody can shed some lights for me...
-lara-
--- Lara Adianto <m1r4cle_26@yahoo.com> wrote:
> hello,
>
> has anybody ever succeeded to setup solaris 8 to
> authenticate (login authentication) to an external
> openldap server using pam_ldap ?
>
> I've done the following:
> - building nss_ldap and pam_ldap (configure them
> with-ldap-lib=openldap and
> with-ldap-conf-file=/etc/ldap.conf...make...make
> install)
> - copy nsswitch.ldap to nsswitch.conf
> - edit /etc/ldap.conf, specify the host, binddn,
> password, etc etc
> - edit /etc/pam.conf:
> # PAM configuration
> #
> # Authentication management
> #
> rsh auth required
> /usr/lib/security/$ISA/pam_rhosts_auth.so.1
> other auth sufficient
> /usr/lib/security/$ISA/pam_unix.so.1
> other auth required
> /usr/lib/security/$ISA/pam_ldap.so.1 use_first_pass
>
> #
> # Account management
> #
> other account requisite
> /usr/lib/security/$ISA/pam_roles.so.1
> other account required
> /usr/lib/security/$ISA/pam_projects.so.1
> other account sufficient
> /usr/lib/security/$ISA/pam_unix.so.1
> other account required
> /usr/lib/security/$ISA/pam_ldap.so.1 use_first_pass
>
> #
> # Session management
> #
> other session sufficient
> /usr/lib/security/$ISA/pam_unix.so.1
> other session optional
> /usr/lib/security/$ISA/pam_ldap.so.1 use_first_pass
>
> #
> # Password management
> #
> other password sufficient
> /usr/lib/security/$ISA/pam_ldap.so.1
> other password required
> /usr/lib/security/$ISA/pam_unix.so.1 use_first_pass
>
> I created a user in ldap server which doesn't exist
> in
> /etc/passwd, started slapd with full debugging but I
> encountered the following error when trying to login
> into solaris 8 with that user:
> pam_ldap: ldap_simple_bind: Can't contact ldap
> server
>
> I noticed that ldapsearch from solaris 8 works
> only if i specified the ldap server explicitly using
> -h. It seems that /etc/ldap.conf is not read at all
> !
>
> what did i miss ? I traced the source code and found
> out that it failed in function _connect_anonymously
> bec ldap_simple_bind failed....I wonder whether I
> need
> to update the libldap library in solaris...
>
> any help will be much appreciated,
> lara
>
> =====
>
------------------------------------------------------------------------------------
>
> La vie, voyez-vous, ca n'est jamais si bon ni si
> mauvais qu'on croit
>
> - Guy de Maupassant -
>
------------------------------------------------------------------------------------
>
>
>
> __________________________________
> Do you Yahoo!?
> Yahoo! Mail is new and improved - Check it out!
> http://promotions.yahoo.com/new_mail
>
=====
------------------------------------------------------------------------------------
La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit
- Guy de Maupassant -
------------------------------------------------------------------------------------
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic