[gentoo-user] ldap user auth

timothy johnson Sun, 11 Sep 2005 03:29:28 -0700

Hi all,
I just got done following the howto for ldap user auth. everything I thought went fine. but when I switch my pam file over to what the howto says, then it wont let me log in.

getent passwd|grep 0:0

returns what it says its is suppose to. below are my pam file, and my recent logs, any ideas on what could be wrong?

auth       required     pam_env.so
auth       sufficient   pam_unix.so likeauth nullok

auth       required     pam_deny.so

account    required     pam_unix.so

password   required     pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
password   sufficient   pam_unix.so nullok md5 shadow use_authtok

password   required     pam_deny.so

session    required     pam_limits.so
session    required     pam_unix.so

#auth           required        pam_env.so
#auth           sufficient      pam_unix.so likeauth nullok shadow

#auth           sufficient      pam_ldap.so use_first_pass
#auth           required        pam_deny.so

#account                required        pam_unix.so
#account                sufficient      pam_ldap.so


#password       required        pam_cracklib.so retry=3
#password       sufficient      pam_unix.so nullok use_authtok shadow md5
#password       sufficient      pam_ldap.so use_authtok
#password       requried        pam_deny.so


#session                requried        pam_limits.so
#session                requried        pam_unix.so
#session                requried        pam_mkhomedir.so skel=/etc/skel umask=0
#session                optional        pam_ldap.so


Right now I have it set on my old config, so that I can login to the system, but when I comment out the top half and uncomment the bottom, I cant log in, and I get the follow lines in my log.

Sep 11 02:13:36 tux login[7101]: PAM pam_parse: expecting return value; [...requried]

Sep 11 02:13:36 tux login[7101]: PAM pam_parse: expecting return value; [...requried]
Sep 11 02:13:36 tux login[7101]: PAM pam_parse: expecting return value; [...requried]
Sep 11 02:13:36 tux login[7101]: PAM pam_parse: expecting return value; [...requried]

Sep 11 02:13:40 tux slapd[6726]: conn=27 fd=13 ACCEPT from IP=127.0.0.1:53088 (IP=0.0.0.0:636)
Sep 11 02:13:40 tux slapd[6733]: conn=27 op=0 BIND dn="" method=128

Sep 11 02:13:40 tux slapd[6733]: conn=27 op=0 RESULT tag=97 err=0 text=
Sep 11 02:13:40 tux slapd[6734]: conn=27 op=1 SRCH base="ou=People,dc=mydomain,dc=org" scope=2 deref=0 filter="(&(objectClass=posixAccount)(uid=timothy))"

Sep 11 02:13:40 tux login(pam_unix)[7101]: session opened for user timothy by LOGIN(uid=0)
Sep 11 02:13:40 tux slapd[6734]: conn=27 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Sep 11 02:13:40 tux slapd[6733]: conn=27 op=2 UNBIND

Sep 11 02:13:40 tux slapd[6733]: conn=27 fd=13 closed
Sep 11 02:13:40 tux login[7101]: Permission denied

[gentoo-user] ldap user auth

Reply via email to