Re: Issue with libnss-ldap on Debian squeeze, trying anonymous bind with a binddn
[
Date Prev][
Date Next]
[
Thread Prev][
Thread Next]
Re: Issue with libnss-ldap on Debian squeeze, trying anonymous bind with a binddn
- From: Arthur de Jong <arthur [at] arthurdejong.org>
- To: nss-pam-ldapd-users [at] lists.arthurdejong.org
- Subject: Re: Issue with libnss-ldap on Debian squeeze, trying anonymous bind with a binddn
- Date: Thu, 11 Oct 2012 22:24:13 +0200
On Thu, 2012-10-11 at 21:23 +0200, Jérémie Grauer wrote:
> But when I try to connect as this user (su - or ssh), this is result
> from the user perspective:
> $ su - abeta
> Password:
> su: Authentication failure
For authentication you also have to have the libpam-ldapd package
installed.
Without it pam_unix will try to get the password hash from the LDAP
shadow map which will fail with most configurations. You could also try
map shadow userPassword userPassword
instead but it is strongly discouraged as it exposes password hashes
from LDAP and limits the hashing functions you can use.
Hope this helps,
--
-- arthur - arthur@arthurdejong.org - http://arthurdejong.org --
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/