getent-passwd non visualizza utenti ldap

To: debian-italian@lists.debian.org
Subject: getent-passwd non visualizza utenti ldap
From: stefano malini <lozingalo@gmail.com>
Date: Fri, 20 Apr 2012 16:01:46 +0200
Message-id: <[🔎] 4F916C4A.10201@gmail.com>

Ciao a tutti,

mi si ripresenta un vecchio problema di cui avevamo già discusso ma chequesta volta mi pare un pò diverso.ho sempre il mio server ldap che sto configurando su debian squeeze. hodovuto reinstallare ed ora mi sono nuovamente fermato con getent passwdche non mi visualizza tutti gli utenti compresi quelli che ho registratosu directory ldap.

Quando riavvio il processo nslcd da init.d compare il messaggio

Starting LDAP connection daemon: nslcdnslcd: Warning: LDAP NSS modulenot loaded: /lib/libnss_ldap.so.2: file too short


questo è l'output di
strace getent passwd 2>&1 | grep -A12 "/lib/libnss_ldap.so.2"
open("/lib/libnss_ldap.so.2", O_RDONLY) = 4
read(4, "", 512)                        = 0
close(4)                                = 0
munmap(0xb74de000, 21460)               = 0
close(3)                                = 0
munmap(0xb77b2000, 4096)                = 0

write(1, "root:x:0:0:root:/root:/bin/bash\n"...,1159root:x:0:0:root:/root:/bin/bash

daemon:x:1:1:daemon:/usr/sbin:/bin/sh
bin:x:2:2:bin:/bin:/bin/sh
sys:x:3:3:sys:/dev:/bin/sh
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/bin/sh
man:x:6:12:man:/var/cache/man:/bin/sh

come mi era stato chiesto come verifca nella mail di tempo fa in cuichiedevo supporto per lo stesso errore.

vi riporto anche i file slapd.conf dove ho adattato le ACLs perl'accesso alle ricerche da parte di nslcd e nslcd.conf:



slapd.conf
#Basics
include         /etc/ldap/schema/core.schema
include         /etc/ldap/schema/cosine.schema
include         /etc/ldap/schema/inetorgperson.schema
include         /etc/ldap/schema/nis.schema

pidfile         /var/run/slapd/slapd.pid
argsfile        /var/run/slapd/slapd.args
loglevel        trace
modulepath      /usr/lib/ldap
moduleload      back_hdb

#Database Configuration
backend         hdb
database        hdb
suffix          "dc=amahoro,dc=bi"
rootdn          "cn=Manager,dc=amahoro,dc=bi"
rootpw          {SSHA}zH2A+jeSlbl2/UcAXm596KPV4IB/R6x9
directory       /var/lib/ldap
index           objectClass,cn  eq

#ACLs
access to attrs=userPassword
        by anonymous auth
        by self write
        by * none

access to *
        by dn.base="uid=nslcd_proc,ou=System,dc=amahoro,dc=bi" read
        by self write
        by * none


nslcd.conf

# /etc/nslcd.conf
# nslcd configuration file. See nslcd.conf(5)
# for details.

# The user and group nslcd should run as.
uid nslcd
gid nslcd

# The location at which the LDAP server(s) should be reachable.
uri ldap://localhost:389

# The search base that will be used for all queries.
base dc=amahoro,dc=bi

# The LDAP protocol version to use.
#ldap_version 3

# The DN to bind with for normal lookups.
binddn uid=nslcd_proc,ou=System,dc=amahoro,dc=bi
bindpw *****

# The DN used for password modifications by root.
#rootpwmoddn cn=admin,dc=example,dc=com

# SSL options
#ssl off
#tls_reqcert never

# The search scope.
#scope sub

cosa ne dite?

grazie

Z.

Reply to:

Prev by Date: Re: Oops e apt-get segfault
Next by Date: [OT] Autenticazione LAN a livello di porta (RJ-45)
Previous by thread: Login rifiutato da client ubuntu a server ldap debian
Next by thread: Re: getent-passwd non visualizza utenti ldap
Index(es):
- Date
- Thread