Am Montag, 22. Okt 2007, 06:20:56 +0200 schrieb Bertram Scharpf: > Hi, > > Am Freitag, 19. Okt 2007, 21:09:59 +0200 schrieb Bertram Scharpf: > > @(#) $OpenLDAP: slapd 2.3.38 (Oct 18 2007 22:12:26) $ [EMAIL > > PROTECTED]:/var/tmp/portage/net-nds/openldap-2.3.38/work/openldap-2.3.38/servers/slapd > > nss_ldap: failed to bind to LDAP server ldap://127.0.0.1: Can't contact > > LDAP server > > nss_ldap: failed to bind to LDAP server ldap://127.0.0.1/: Can't contact > > LDAP server > > nss_ldap: failed to bind to LDAP server > > ldapi://%2fvar%2frun%2fldapi_sock/: Can't contact LDAP server > > ... > > nss_ldap: could not search LDAP server - Server is unavailable > > > > I found out that the Gentoo init script activates the > > options "-u ldap -g ldap". > > I detected I have a machine where this didn't happen. Then I > upgraded from glibc-2.5-r4 to glibc-2.6.1 ... > > Could this be a real bug in glibc? Does anybody experience > the same behaviour?
The developer list gave me the answer. Glibc checks for group memberships of user ldap. A possible (temporary) solution is to say in /etc/ldap.conf: nss_initgroups_ignoreusers root,ldap Bertram -- Bertram Scharpf Stuttgart, Deutschland/Germany http://www.bertram-scharpf.de -- [EMAIL PROTECTED] mailing list
