failed to get password: authentication error

["Eugene M. Zheganin" <eugene [at] zhegan.in>]

Hi,

I'm trying to set up a LDAP authentication on one of my servers using
nss-pam-ldapd/nslcd, but I'm getting an error:

===Cut===
Jun 23 16:36:51 server sshd[13295]: failed to get password:
authentication error
===Cut===

I think I've set up the configuration files properly-

nscld.conf:
===Cut===
uid nslcd
gid nslcd

uri ldap://ldap.my.domain

base dc=my,dc=domain

binddn uid=proxy,ou=accounts,ou=my,dc=my,dc=domain
bindpw XXXXXXXXXXXXXXXXXXX

#map passwd userPassword userPassword
#map shadow userPassword userPassword

#filter passwd (memberOf=cn=customGroup,ou=groups,dc=my,dc=domain)
===Cut===

I'm able to get the getent passwd username output:

# getent passwd username
username:x:10892:1001:username:/home/username:/usr/bin/bash

But I cannot authenticate using ssh. Each time I get the error above.
The thing is, the error pops up even before I enter the passord in the
ssh client, may be this will help to understand what exactly is failing.

I've tested the LDAP installation using ldapsearch from the openldap
package, and I can say that I'm able to search the base using both
credentals pair, 'username' and 'proxy'. Both times I got all the
entities using filter (objectClass=*). I've also though that it's the
nslcd filter that is responsible for unsuccessful authentication, and
commented it out, but this didn't help.

How can I investigate what's failing ?

Thanks.
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-users/