[CentOS] centos authentication via ldap produces no nameshellprompt

Mon Jan 21 19:47:16 UTC 2008
Tronn Wærdahl <tronnw at gmail.com>

On Jan 21, 2008 5:13 PM, Dave <dmehler26 at woh.rr.com> wrote:

>  Hello,
>     Thanks. Do you have configs from your setup?I'd like to compare your
> working setup with my nonworking one, see if i can spot the issue.
> Thanks.
> Dave.
>
>
> ----- Original Message -----
> *From:* Tronn Wærdahl <tronnw at gmail.com>
> *To:* CentOS mailing list <centos at centos.org>
> *Sent:* Monday, January 21, 2008 8:51 AM
> *Subject:* Re: [CentOS] centos authentication via ldap produces no
> nameshellprompt
>
>
>
> On Jan 21, 2008 2:23 PM, Dave <dmehler26 at woh.rr.com> wrote:
>
> >  Hi,
> >     Thanks for your reply. I looked at permissions on the nss_* and
> > ldap* and slapd.conf files, they are all 644.
> >     This issue may be related maybe not. Upon starting slapd i'm seeing
> > this in my log:
> >
> > Jan 20 23:23:41 ldap slapd[3697]: nss_ldap: could not search LDAP server
> > - Server is unavailable
> > yet as i say i can log in, only the username part of the prompt is
> > unavailable. Again checking PS1 it is set properly.
> >     Thanks.
> > Dave.
> >
> >
> >  ----- Original Message -----
> > *From:* Tronn Wærdahl <tronnw at gmail.com>
> > *To:* CentOS mailing list <centos at centos.org>
> > *Sent:* Sunday, January 20, 2008 12:43 PM
> > *Subject:* Re: [CentOS] centos authentication via ldap produces no name
> > shellprompt
> >
> >
> >
> >   On Jan 20, 2008 11:45 AM, Dave <dmehler26 at woh.rr.com> wrote:
> >
> > > Hello,
> > >    I'm trying to set up centos 5.1 to authenticate against an openldap
> > > server. I've got the authentication working, in that i can log in as a
> > > user
> > > contained within the ldap database but not in the system passwd/group
> > > files.
> > > The problem is instead of a prompt that for example looks like this:
> > >
> > > (username)@hostname:~/$
> > >
> > > i'm getting this:
> > >
> > > (I have no name)@hostname:~/$
> > >
> > >    Aside from this everything works, i can finger, use id, etc. It's
> > > annoying and i'm thinking it might be a symptom of a misconfiguration.
> > > Any
> > > suggestions?
> > > Thanks.
> > > Dave.
> > >
> > > _______________________________________________
> > > CentOS mailing list
> > > CentOS at centos.org
> > > http://lists.centos.org/mailman/listinfo/centos
> > >
> >
> >
> > I allso experienced this with CentOS4.4, then I got i because of some
> > missconfiguration with the LDAP. If I remember correctly is was coz of some
> > permission was failling on some ldap configuration  files (/etc/ldap.conf,
> > /etc/openldap/slapd.conf, /etc/nsswitch.conf, /etc/openldap/ldap.conf)
> >
> >
> > Tronn
> >
> > ------------------------------
> >
> > _______________________________________________
> > CentOS mailing list
> > CentOS at centos.org
> > http://lists.centos.org/mailman/listinfo/centos
> >
> >
> > _______________________________________________
> > CentOS mailing list
> > CentOS at centos.org
> > http://lists.centos.org/mailman/listinfo/centos
> >
> >
>
> Hi
>
> Yes i use it with samba as pdc. My /etc/ldap.conf look like this
>
> host localhost
> base dc=example,dc=com
> bindpw secret
> binddn cn=Manager,dc=example,dc=com
> #rootbinddn cn=Manager,dc=example,dc=com
> ssl no
> pam_filter objectclass=posixAccount
> pam_login_attribute uid
> pam_password md5
>
>
> I did this some time ago, so i dont remember all of it. But I noticed that
> what order the lines are in here was a issue too
>
>
> Tronn
>
> ------------------------------
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>
>

Hi

Sorry for late reply, i attached a file with ldap files, i removed some
access settings
The files is /etc/pam.d/system-auth, /etc/ldap.conf,
/etc/openldap/slapd.conf, /etc/openldap/ldap.conf.

In addition to those files you allso need the /etc/ldap.secret


Tronn
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.centos.org/pipermail/centos/attachments/20080121/3fcb4570/attachment-0005.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ldap.rtf
Type: application/rtf
Size: 4329 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20080121/3fcb4570/attachment-0005.rtf>