Maybe schema ppolicy problem, old openldap

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Берденников Александр <berdennikov [at] promo.ru>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Reply-to: berdennikov [at] promo.ru
Subject: Maybe schema ppolicy problem, old openldap
Date: Thu, 24 Mar 2016 09:50:49 +0300

Hello! Rely your help

client
debian 8.3
nss-pam-ldapd 0.9.4 debian package

server
OpenLDAP: slapd 2.4.30 

on debian 8.3 in auth.log i'm have
Mar 23 23:16:39 asterope sshd[16995]: pam_ldap(sshd:auth):
Authentication failure; user=berdennikov

ldap server shows at the same time
Mar 23 23:53:10 [slapd] slap_global_control: unrecognized control:
1.3.6.1.4.1.42.2.27.8.5.1_

nslcd -d on client shows
ldap_sasl_bind("uid=berdennikov,ou=IT,ou=Departments,ou=promo.ru,ou=Domains,ou=Users,dc=promodev,dc=ru","***")
 (uri="ldaps://ldap.promodev.ru/")
nslcd: [94b2fb] <authc="berdennikov"> DEBUG: ldap_result(): end of
results (0 total)
nslcd: [94b2fb] <authc="berdennikov">
uid=berdennikov,ou=IT,ou=Departments,ou=promo.ru,ou=Domains,ou=Users,dc=promodev,dc=ru:
 No results returned
nslcd: [94b2fb] <authc="berdennikov"> DEBUG: ldap_unbind()

if i login with wrong password, im get other error on ldap server, not
"No results returned
" and a Invalid credentials
im need downgrade nss-pam-ldapd 0.9.4 ? or maybe update schemas on ldap
server? or maybe i can disable ppolicy requests?



-- 




Aleksandr Berdennikov
System Administrator




-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

Maybe schema ppolicy problem, old openldap, Берденников Александр

Re: Maybe schema ppolicy problem, old openldap, Arthur de Jong
- Re: Maybe schema ppolicy problem, old openldap, Берденников Александр

Prev by Date: Re: Problem with PAM password changes
Next by Date: Re: Maybe schema ppolicy problem, old openldap
Previous by thread: Re: Problem with PAM password changes
Next by thread: Re: Maybe schema ppolicy problem, old openldap