But, the user account with "test_user:IT" is not able to login. I have setup an OpenLDAP server and am using OpenLDAP client on SLES machines.
SSH or "su - test_user:IT" fails. I see the following logs in /var/log/messages file. Feb 23 11:09:41 server sshd[20549]: Invalid user test_user from 10.34.3.94 Feb 23 11:09:44 sverver sshd[20549]: error: PAM: User not known to the underlying authentication module for illegal user test_user from 10.34.3.94 *** Note that the logs just mention test_user instead of test_user:IT Vinay On Wed, Feb 23, 2011 at 2:37 PM, Marc Patermann <[email protected]> wrote: > Vinay, > > Vinay Kalkoti schrieb am 23.02.2011 09:10 Uhr: > >> I wanted to know what all complex characters can be included for an >> UID attribute. >> >> I have the following user names (uid). >> >> Please let me know which which of the following uid's are invalid - >> >> test_user: IT (LOC) >> sup_12$ >> test_user:IT(LOC) >> test_user-IT >> test_user IT >> test_user:IT >> test_user(IT) >> test_user.IT >> test_user/IT >> test_user/IT >> test_user#IT >> test_user*IT >> test_user@IT > > IMHO from the ldap point of view this is all totally valid. As long as it is > encoded in UTF-8. > According to this > http://www.andrew.cmu.edu/user/dd26/ldap.akbkhome.com/attribute/uid.html > the syntax of uid is Directory String which does not limit you either. > > Your application using uid may or may not have stricter rules than that... > > Marc >
