Bug#268036: marked as done (kdm doesn't work with libpam-ldap)

To: Pierre HABOUZIT <madcoder@debian.org>
Subject: Bug#268036: marked as done (kdm doesn't work with libpam-ldap)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 06 May 2006 16:03:06 -0700
Message-id: <[🔎] handler.268036.D268036.11469557615034.ackdone@bugs.debian.org>
References: <20060506224951.GA29976@hades.madism.org> <Pine.LNX.4.58.0408251028270.22800@junior>

Your message dated Sun, 7 May 2006 00:49:51 +0200
with message-id <20060506224951.GA29976@hades.madism.org>
and subject line kdm doesn't work with libpam-ldap
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--- Begin Message ---

To: submit@bugs.debian.org
Subject: kdm doesn't work with libpam-ldap
From: Donald Thompson <dlt@lunanet.biz>
Date: Wed, 25 Aug 2004 10:47:56 -0600 (MDT)
Message-id: <Pine.LNX.4.58.0408251028270.22800@junior>
Reply-to: dlt@lunanet.biz

Package: kdm
Version: 4:3.3.0-1

kdm does not allow login for ldap users. I tried using the stock
/etc/pam.d/kdm configuration without modification, and that has not
worked. I've got the appropriate pam_ldap.so entries in my
/etc/pam.d/common-* files to allow ldap authentication, and ldap
authentication appears to work with everything (ssh, login, xdm) but kdm. I
noticed the /etc/pam.d/kdm file was slightly different from the /etc/pam.d/xdm
file, so I changed the kdm file to be identical, to no avail.

Kdm appears to succesfully authenticate, but the ldap users window manager
never starts. After you input username/password, the login screen
disappears, and it looks like the X server restarts, and a second or two
later I'm back at the kdm login. Local users from /etc/passwd have no
problems logging in under kdm. If I have xdm running as the graphical
login manager, it has no problem logging in ldap users.

I get no logging as to what might be the problem in /var/log/auth.log,
/var/log/kdm.log, /var/log/XFree86.log, and nothings in
the users ~/.xsession-errors file.

Thanks.

-Don

--- End Message ---

--- Begin Message ---

To: Donald Thompson <dlt@lunanet.biz>, 268036-done@bugs.debian.org
Subject: Re: kdm doesn't work with libpam-ldap
From: Pierre HABOUZIT <madcoder@debian.org>
Date: Sun, 7 May 2006 00:49:51 +0200
Message-id: <20060506224951.GA29976@hades.madism.org>
In-reply-to: <Pine.LNX.4.58.0408251028270.22800@junior>
References: <Pine.LNX.4.58.0408251028270.22800@junior>

On Wed, Aug 25, 2004 at 10:47:56AM -0600, Donald Thompson wrote:
> Package: kdm
> Version: 4:3.3.0-1
> 
> kdm does not allow login for ldap users. I tried using the stock
> /etc/pam.d/kdm configuration without modification, and that has not
> worked. I've got the appropriate pam_ldap.so entries in my
> /etc/pam.d/common-* files to allow ldap authentication, and ldap
> authentication appears to work with everything (ssh, login, xdm) but kdm. I
> noticed the /etc/pam.d/kdm file was slightly different from the /etc/pam.d/xdm
> file, so I changed the kdm file to be identical, to no avail.
> 
> Kdm appears to succesfully authenticate, but the ldap users window manager
> never starts. After you input username/password, the login screen
> disappears, and it looks like the X server restarts, and a second or two
> later I'm back at the kdm login. Local users from /etc/passwd have no
> problems logging in under kdm. If I have xdm running as the graphical
> login manager, it has no problem logging in ldap users.
> 
> I get no logging as to what might be the problem in /var/log/auth.log,
> /var/log/kdm.log, /var/log/XFree86.log, and nothings in
> the users ~/.xsession-errors file.


  I suppose you dont have the proper config. I use pam-ldap and
libnss-ldap as well (both are required).

  my setup is:

common-auth:

    auth    sufficient      pam_ldap.so
    auth    required        pam_unix.so nullok_secure use_first_pass

common-passwd:

    password   sufficient pam_ldap.so
    password   required   pam_unix.so nullok obscure min=4 max=8 md5 use_first_pass

common-session: no change
common-account:

    account         sufficient          pam_ldap.so
    account         required            pam_unix.so try_first_pass


  also ensure that you have the last /etc/pam.d/kdm and kdm-np file
installed (no kdm.dpkg-new files, if yes replace the non .dpkg-new files
with the .dpkg-new ones).


  I use this configuration in many places with no problems. I close the
bug, please reopen if that configuration still does not work.




-- 
·O·  Pierre Habouzit
··O                                                madcoder@debian.org
OOO                                                http://www.madism.org

Attachment: signature.asc
Description: Digital signature

--- End Message ---

Reply to:

Prev by Date: Bug#269422: URL does not properly handle $ in URL
Next by Date: Bug#311489: segfault caused by website
Previous by thread: Bug#269422: URL does not properly handle $ in URL
Next by thread: Bug#311489: segfault caused by website
Index(es):
- Date
- Thread