lists.arthurdejong.org
RSS feed

Re: Cannot login, fatal error at initgroups

[Date Prev][Date Next] [Thread Prev][Thread Next]

Re: Cannot login, fatal error at initgroups

Hi Nisarg,

I believe that's because entry ldap user nisarg.jhaveri has too high uidNumber. The maximum uidNumber should probably be 65535. It depends on which systems are you going to use nslcd.

Best,
Jakub

On Wed, Jul 12, 2017 at 11:58 AM, Nisarg Jhaveri <nisargjhaveri [at] gmail.com> wrote:
Hello,

I'm trying to setup ldap authentication on Ubuntu server 16.04, using `nss-pam-ldapd`. I think the ldap auth part works, but when I try to login, auth.log says,
sshd[27422]: fatal: initgroups: nisarg.jhaveri: Invalid argument

If I set map gidNumber to 100, auth.log says,
sshd[27411]: fatal: seteuid 201302195: Invalid argument

I know that the gid is not in /etc/group. But I believe it should not be required for it to be present there. Am I missing something?

I recently setup another server using `libpam-ldap`, I didn't encounter any similar errors there. Any ideas?

Couple of more outputs that can be useful

$ getent passwd nisarg.jhaveri
nisarg.jhaveri:*:201302195:201302:Nisarg Jhaveri:/home/nisarg.jhaveri:/bin/bash

$ nslcd --version
nss-pam-ldapd 0.9.6

Any ideas? 

Thanks.

--
Nisarg Jhaveri
નિસર્ગ ઝવેરી

--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
https://lists.arthurdejong.org/nss-pam-ldapd-users/



--
Jakub Jindra
-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
https://lists.arthurdejong.org/nss-pam-ldapd-users/