[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Linux LDAP problem

El Tue, Aug 28, 2001 at 09:23:47AM -0400, Sunny Dubey escribió:
> Hey,
> I've got a slight problem,  at school we run two major networks, one half is 
> Novell Netware based, and the other half is unix based.  We basically one 
> centralized system of authentication, so that user don't have to remember two 
> different passwords to use either system.  We been trying to get linux to use 
> ldap to authenticate with the novell ldap server, and have had no luck.  We 
> know the novell ldap server is fine, however something seems fishy with the 
> linux side.  The problem is that when using the PAM_LDAP modules, is that 
> when a user tries to login, they are asked for a password twice, once the 
> normal password, and the second one being the ldap based password.  However, 
> even if you type in the correct passwords, LDAP says permission denied, or 
> authentication failed.  What makes it really odd is how at the same time the 
> novell netware server states it has seen the authenticated user, and even 
> gives it an OK to login.
> Anyone have any clue as to how to make it work?  Are there any docs about 
> getting Netware+linux+ldap to work?   thanks for any info that you might pass 
> along.  have a nice day.

  I think your problem is in your pam module configuration, I use something
  like that for auth:

auth       required     pam_nologin.so
auth       sufficient   pam_unix.so
auth       required     pam_ldap.so use_first_pass

  With this setup the user is only asked once; if 'pam_unix' succeds the user
  is authorized and if it fails 'pam_ldap' tries to authenticate using the
  same password entered.

  Hope this helps.

Sergio Talens-Oliag <sto@debian.org>
Key fingerprint = 29DF 544F 1BD9 548C 8F15  86EF 6770 052B B8C1 FA69

Reply to: