Re: User not known to the underlying authentication module
[Date Prev][Date Next] [Thread Prev][Thread Next]Re: User not known to the underlying authentication module
- From: Lane <software.research.development [at] gmail.com>
- To: Arthur de Jong <arthur [at] arthurdejong.org>
- Cc: nss-pam-ldapd-users [at] lists.arthurdejong.org
- Subject: Re: User not known to the underlying authentication module
- Date: Fri, 22 Jan 2016 22:58:23 -0600
I have nslcd with the -d option, but not seeing any output from it in /var/log/messages. By disabling (u)nscd, I assume you mean just don't run it. I don't even have the package unscd installed.
Here's the output I've collected so far.
http://pastebin.com/gA6Mc6V5
"... seems to suggest that your user is in /etc/passwd ...", I do have my users in /etc/passwd. Should they not be there? This system was in use before I started adding ldap.
If you have thoughts, much appreciated.
Here's the output I've collected so far.
http://pastebin.com/gA6Mc6V5
"... seems to suggest that your user is in /etc/passwd ...", I do have my users in /etc/passwd. Should they not be there? This system was in use before I started adding ldap.
If you have thoughts, much appreciated.
On Wed, Jan 20, 2016 at 1:15 PM, Arthur de Jong <arthur [at] arthurdejong.org> wrote:
On Tue, 2016-01-19 at 21:30 -0600, Lane wrote:
> When trying to log in to an ldap client node from the openldap server
> node, I see the following...
>
> $ ssh 10.10.10.120
> You are required to change your password immediately (root enforced)
> WARNING: Your password has expired.
> You must change your password now and login again!
> (current) LDAP Password:
> passwd: User not known to the underlying authentication module
> passwd: password unchanged
> Connection to 10.10.10.120 closed.
>
> Here's the details on my user.
>
> $ chage -l james
> Last password change : Jan 06,
> 2016
This seems to suggest that your user is in /etc/passwd and not coming
from LDAP. On my system chage parses the files in /etc directly instead
of using NSS.
To get more information you can add the debug option in your PAM
configuration to both pam_unix and pam_ldap. Even more debug
information can be found by running nslcd in debug mode with -d. Be
sure to disable (u)nscd when debugging.
Hope this helps,
--
-- arthur - arthur [at] arthurdejong.org - http://arthurdejong.org/ --
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe [at] lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/
-- To unsubscribe send an email to nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see http://lists.arthurdejong.org/nss-pam-ldapd-users/
- User not known to the underlying authentication module,
Lane
- Re: User not known to the underlying authentication module,
Arthur de Jong
- Re: User not known to the underlying authentication module, Lane
- Re: User not known to the underlying authentication module,
Lane
- Re: User not known to the underlying authentication module, Arthur de Jong
- Re: User not known to the underlying authentication module,
Arthur de Jong
- Prev by Date: Re: User not known to the underlying authentication module
- Next by Date: Re: User not known to the underlying authentication module
- Previous by thread: Re: User not known to the underlying authentication module
- Next by thread: Re: User not known to the underlying authentication module