Re: cannot find name for group ID on all groups

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Arthur de Jong <arthur [at] arthurdejong.org>
To: Tom Farrow <tom.farrow [at] first-utility.com>
Cc: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: Re: cannot find name for group ID on all groups
Date: Sat, 10 Mar 2018 20:45:24 +0100

On Fri, 2018-03-09 at 11:35 +0000, Tom Farrow wrote:
> map group gidNumber objectSid:S-1-5-21-3623811015-3361044348-30300820
> map passwd uidNumber objectSid:S-1-5-21-3623811015-3361044348-
> 30300820

Note that the value after objectSid needs to match the SID of your
domain as it is configured in AD. You can probably use ldapsearch to
find the correct value.

> You are right, the getend groupid fails, and the others succeed.
> 
> RUnning nslcd -d in the foreground makes login fail

Can you provide the output of nslcd -d with "getent group
existinggroup" and "getent group existinggid"? Are the username and
userid lookps working as expected?

Kind regards,

-- 
-- arthur - arthur@arthurdejong.org - https://arthurdejong.org/ --

-- 
To unsubscribe send an email to
nss-pam-ldapd-users-unsubscribe@lists.arthurdejong.org or see
https://lists.arthurdejong.org/nss-pam-ldapd-users/

cannot find name for group ID on all groups, Tom Farrow
- Re: cannot find name for group ID on all groups, Tom Farrow
  - Re: cannot find name for group ID on all groups, Arthur de Jong
    - Re: cannot find name for group ID on all groups, Tom Farrow
      - Re: cannot find name for group ID on all groups, Arthur de Jong

Prev by Date: Re: cannot find name for group ID on all groups
Next by Date: pam_unix succeeds unexpectedly with libnss-ldapd
Previous by thread: Re: cannot find name for group ID on all groups
Next by thread: Re: cannot find name for group ID on all groups