Re: libpam-ldapd not looking for groups?

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Arthur de Jong <arthur [at] arthurdejong.org>
To: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: libpam-ldapd not looking for groups?
Date: Wed, 29 Aug 2012 20:42:20 +0200

On Wed, 2012-08-29 at 14:28 +0200, Jorge Suárez de Lis wrote:
> The mapping is there because I'm using groupOfNames instead of
> groupOfUniqueNames LDAP class for groups, so the attribute naming the
> members is named member instead of uniqueMember.

The default mapping has been changed to use the member attribute with
release 0.8.4 so this mapping is no longer required as of that version.

> It seems to me that it won't even try to look for groups. What I am
> doing wrong? I can't see anything relevant to my problem information
> on the docs. I'm probably not understanding how the map option works.

The mapping seems to be correct for the LDAP entry you provided. There
are indeed no group lookups coming into nslcd.

Are you sure /etc/nsswitch.conf is correct? Also, nscd could be causing
problems if it is running. You should disable it while debugging nslcd.

-- 
-- arthur - arthur@arthurdejong.org - http://arthurdejong.org --

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/

libpam-ldapd not looking for groups?, Jorge Suárez de Lis
- Re: libpam-ldapd not looking for groups?, Arthur de Jong

Prev by Date: libpam-ldapd not looking for groups?
Next by Date: Fine grained access control
Previous by thread: libpam-ldapd not looking for groups?
Next by thread: Fine grained access control