nss_ldap and pam_ldap troubles
Joerg Pulz
Joerg.Pulz at frm2.tum.de
Thu Jan 19 23:36:31 PST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Fri, 20 Jan 2006, Andrew MacTaggart wrote:
> having trouble getting nss_ldap and Pam_ldap to work.
>
> running freebsd 5.4
> ldap - edirectory - remote server
> ldapsearch works
>
> installed nss_ldap
> installed pam_ldap
> change parameters in ldap.conf and nss_ldap.conf
> host 10.x.x.x
> base o=mybase
> basspw = XXXXXXXXXXXX
>
> nsswitch.conf
>
> group: files ldap
> passwd: files ldap
>
> pam.d/sshd
>
> auth sufficient /usr/local/lib/pam_ldap.so no_warn try_first_pass
>
> can't figure out how to enable logging
>
> ssh fails but it takes longer like it is querry something.
>
> need help on how to enable logging for pam_ldap and nss_ldap
>
> need to know where I am making a mistake.
>
> debug would be helpful.
Try the following lines in nss_ldap.conf and ldap.conf:
logdir /var/log
debug 9
Now you should get a seperate file for every process which is using either
pam_ldap or nss_ldap.
Joerg
- --
The beginning is the most important part of the work.
-Plato
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)
iD8DBQFD0JL3SPOsGF+KA+MRAqVWAJ9Y6ImfYN/zUjIGxtRHR9p1ugBC6ACbBeYj
pGOVntAynd6lDfa45EH2Dk8=
=2Yb9
-----END PGP SIGNATURE-----
More information about the freebsd-net
mailing list