Re: Linux LDAP problem
El Tue, Aug 28, 2001 at 09:23:47AM -0400, Sunny Dubey escribió:
> Hey,
>
> I've got a slight problem, at school we run two major networks, one half is
> Novell Netware based, and the other half is unix based. We basically one
> centralized system of authentication, so that user don't have to remember two
> different passwords to use either system. We been trying to get linux to use
> ldap to authenticate with the novell ldap server, and have had no luck. We
> know the novell ldap server is fine, however something seems fishy with the
> linux side. The problem is that when using the PAM_LDAP modules, is that
> when a user tries to login, they are asked for a password twice, once the
> normal password, and the second one being the ldap based password. However,
> even if you type in the correct passwords, LDAP says permission denied, or
> authentication failed. What makes it really odd is how at the same time the
> novell netware server states it has seen the authenticated user, and even
> gives it an OK to login.
>
> Anyone have any clue as to how to make it work? Are there any docs about
> getting Netware+linux+ldap to work? thanks for any info that you might pass
> along. have a nice day.
I think your problem is in your pam module configuration, I use something
like that for auth:
---
auth required pam_nologin.so
auth sufficient pam_unix.so
auth required pam_ldap.so use_first_pass
---
With this setup the user is only asked once; if 'pam_unix' succeds the user
is authorized and if it fails 'pam_ldap' tries to authenticate using the
same password entered.
Hope this helps.
--
Sergio Talens-Oliag <sto@debian.org>
Key fingerprint = 29DF 544F 1BD9 548C 8F15 86EF 6770 052B B8C1 FA69
Reply to: