Re: Fwd: Help required regarding nss-pam-ldap
[
Date Prev][
Date Next]
[
Thread Prev][
Thread Next]
Re: Fwd: Help required regarding nss-pam-ldap
- From: Arthur de Jong <arthur [at] arthurdejong.org>
- To: nss-pam-ldapd-users [at] lists.arthurdejong.org
- Subject: Re: Fwd: Help required regarding nss-pam-ldap
- Date: Wed, 02 Aug 2017 00:13:40 +0200
On Tue, 2017-08-01 at 20:35 +0530, Thejaswi Manjunatha wrote:
> Did you get a chance to look into this question ? Any updates ??
Sorry for not replying sooner. You can use nslcd -d to see what it is
doing exactly and BASE should be the default.
With this my nslcd should do about the following (trimmed most
uninteresting lines) for a BASE search (4 search operations):
nslcd: [334873] <authc="arthur"> DEBUG: nslcd_pam_authc("arthur","su","***")
nslcd: [334873] <authc="arthur"> DEBUG: myldap_search(base="dc=thuis,dc=net",
filter="(&(objectClass=posixAccount)(uid=arthur))")
nslcd: [334873] <authc="arthur"> DEBUG: ldap_result():
uid=arthur,ou=people,dc=thuis,dc=net
nslcd: [334873] <authc="arthur"> DEBUG:
myldap_search(base="uid=arthur,ou=people,dc=thuis,dc=net",
filter="(objectClass=*)")
nslcd: [334873] <authc="arthur"> DEBUG:
ldap_sasl_bind("uid=arthur,ou=people,dc=thuis,dc=net","***")
(uri="ldaps://192.168.12.1/") (ppolicy=yes)
nslcd: [334873] <authc="arthur"> DEBUG:
myldap_search(base="uid=arthur,ou=people,dc=thuis,dc=net",
filter="(objectClass=*)")
nslcd: [334873] <authc="arthur"> DEBUG: ldap_result():
uid=arthur,ou=people,dc=thuis,dc=net
nslcd: [334873] <authc="arthur"> DEBUG: ldap_unbind()
nslcd: [334873] <authc="arthur"> DEBUG: bind successful
nslcd: [334873] <authc="arthur"> DEBUG: myldap_search(base="dc=thuis,dc=net",
filter="(&(objectClass=shadowAccount)(uid=arthur))")
nslcd: [334873] <authc="arthur"> DEBUG: ldap_result():
uid=arthur,ou=people,dc=thuis,dc=net
And if you specify NONE (3 searches):
nslcd: [495cff] <authc="arthur"> DEBUG: nslcd_pam_authc("arthur","su","***")
nslcd: [495cff] <authc="arthur"> DEBUG: myldap_search(base="dc=thuis,dc=net",
filter="(&(objectClass=posixAccount)(uid=arthur))")
nslcd: [495cff] <authc="arthur"> DEBUG: ldap_result():
uid=arthur,ou=people,dc=thuis,dc=net
nslcd: [495cff] <authc="arthur"> DEBUG:
myldap_search(base="uid=arthur,ou=people,dc=thuis,dc=net",
filter="(objectClass=*)")
nslcd: [495cff] <authc="arthur"> DEBUG:
ldap_sasl_bind("uid=arthur,ou=people,dc=thuis,dc=net","***")
(uri="ldaps://192.168.12.1/") (ppolicy=yes)
nslcd: [495cff] <authc="arthur"> DEBUG: ldap_unbind()
nslcd: [495cff] <authc="arthur"> DEBUG: bind successful
nslcd: [495cff] <authc="arthur"> DEBUG: myldap_search(base="dc=thuis,dc=net",
filter="(&(objectClass=shadowAccount)(uid=arthur))")
nslcd: [495cff] <authc="arthur"> DEBUG: ldap_result():
uid=arthur,ou=people,dc=thuis,dc=net
I'm not really sure what other changes between 0.9.7 and 0.9.8 could
impact this. I would be interested in the differences in nslcd -d
output of those two versions.
Kind regards,
--
-- arthur - arthur@arthurdejong.org - https://arthurdejong.org/ --
--
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
https://lists.arthurdejong.org/nss-pam-ldapd-users/
