[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Проблемы с pam_ldap

Доброго времени суток!
Возникла проблема с настройкой аутентификации через pam_ldap, в логах (auth.log) выбивает следующее:
Dec 5 14:37:29 localhost sshd[32275]: pam_ldap: error trying to bind as user "uid=test,cn=Users,dc=test,dc=dp,dc=ua" (Invalid credentials) 
Dec  5 14:37:29 localhost sshd[32275]: (pam_unix) check pass; user unknown
Dec 5 14:37:29 localhost sshd[32275]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=test.dp.ua Dec 5 14:37:31 localhost sshd[32275]: error: PAM: User not known to the underlying authentication module for illegal user test from test.dp.ua Dec 5 14:37:31 localhost sshd[32275]: Failed keyboard-interactive/pam for illegal user test from ::ffff:192.168.0.1 port 47403 ssh2 

Содержимое pam_ldap.conf

ldap_version 3
binddn cn=admin,dc=test,dc=dp,dc=ua
bindpw 123
rootbinddn cn=admin,dc=test,dc=dp,dc=ua
port 389

Содержимое pam.conf

login   auth sufficient /usr/lib/security/pam_ldap.so.1
login   auth required   /usr/lib/security/pam_unix.so.1 try_first_pass
login   auth required   /usr/lib/security/pam_dial_auth.so.1
telnet  auth sufficient /usr/lib/security/pam_ldap.so.1
telnet  auth required   /usr/lib/security/pam_unix.so.1 try_first_pass
rlogin  auth sufficient /usr/lib/security/pam_rhosts_auth.so.1
rlogin  auth sufficient /usr/lib/security/pam_ldap.so.1
rlogin  auth required   /usr/lib/security/pam_unix.so.1 try_first_pass
dtlogin auth sufficient /usr/lib/security/pam_ldap.so.1
dtlogin auth required   /usr/lib/security/pam_unix.so.1 try_first_pass
rsh     auth required   /usr/lib/security/pam_rhosts_auth.so.1
other   auth sufficient /usr/lib/security/pam_ldap.so.1
other   auth required   /usr/lib/security/pam_unix.so.1 try_first_pass
login   account required /usr/lib/security/pam_ldap.so.1
login   account required /usr/lib/security/pam_unix.so.1
dtlogin account required /usr/lib/security/pam_ldap.so.1
dtlogin account required /usr/lib/security/pam_unix.so.1
other   account required /usr/lib/security/pam_ldap.so.1
other   account required /usr/lib/security/pam_unix.so.1
other   session required /usr/lib/security/pam_unix.so.1
other   password required /usr/lib/security/pam_ldap.so



файлы /etc/pam.d/* взяты из стандартной доки по pam_ldap

Может кто уже сталкивался с подобной проблемой?
Заранее спасибо за помощь!

С уважением, Алексей
Reply to: