lists.arthurdejong.org
RSS feed

Centos ldap authentication via pam_ldap slow, how to debug?

[Date Prev][Date Next] [Thread Prev][Thread Next]

Centos ldap authentication via pam_ldap slow, how to debug?

Hi 


I installed and set-up the nss-pam-ldapd on CentOS 6. I can authenticate against the configured Active Directory, so that is nice.


However, it takes about 40 seconds to do so. What should I do to troubleshoot this issue?

(See also here: http://serverfault.com/questions/779419/centos-6-nss-pam-ldapd-delay )
serverfault.com
I have configured Centos with nss-pam-ldapd and seems to work fine. ( I can login with my AD credentioals). Except there seems to be a delay of about 20-30 seconds before I can log in. I also set-...

This is all the logging I could find:

 

May 27 16:07:04 machine1 unix_chkpwd[7699]: password check failed for user (robau)
May 27 16:07:04 machine1 sshd[7697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.125.24  user=robau
May 27 16:07:20 machine1 sshd[7697]: pam_ldap: ldap_result Timed out
May 27 16:07:20 machine1 sshd[7697]: pam_ldap: ldap_result Timed out
May 27 16:07:20 machine1 sshd[7697]: Accepted password for robau from 192.168.125.24 port 34788 ssh2

I tried adding 'debug' in de pam.d files:


    password    sufficient    pam_ldap.so use_authtok debug

That did not give me extra logging. Also, I added some debug level in the pam.conf, but that also did not give me more results.

Can you advise me on how to proceed troubelshooting?


Thanks in advance!

Rob Audenaerde

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/