nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28)
[Date Prev][Date Next] [Thread Prev][Thread Next]nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28)
- From: "CHOUDARY, ANIRUDH (Ext)" <anirudh.choudary [at] novartis.com>
- To: "nss-pam-ldapd-users [at] lists.arthurdejong.org" <nss-pam-ldapd-users [at] lists.arthurdejong.org>
- Cc: "Shastry, Kedar \(Ext\)" <kedar.shastry [at] novartis.com>, "Madan Mohan, Amarnath" <amarnath.madan_mohan [at] novartis.com>
- Subject: nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28)
- Date: Thu, 12 Sep 2019 09:58:23 +0000
|
Hello We are making use of nslcd (v 0.9.10) to bind with our internal ldap to fetch the users, group and shadow information. The process binds successfully with the LDAP, but returns a failure upon search for the user, even after finding the user. This failure status causes authentication failure for our app that relies on nslcd. We have exhausted all our options and are looking for pointers on how best to troubleshoot this. Could you please help us by pointing in the right direction and resolve this. Following is the error message we find in nslcd debug output. *************************************************** nslcd: [1b58ba] DEBUG: connection from pid=147 uid=0 gid=0 nslcd: [1b58ba] <authc="madanam1"> DEBUG: nslcd_pam_authc("myuser","rstudio","***") nslcd: [1b58ba] <authc="myuser"> DEBUG: myldap_search(base="dc=novartis,dc=net", filter="(&(objectClass=posixAccount)(uid=myuser))") nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_initialize(ldap://BIND-SERVER:389) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_rebind_proc() nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,3600) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,3600) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,3600) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_simple_bind_s("BINDUSER","***") (uri="ldap://BIND-SERVER:389") nslcd: DEBUG: accept() failed (ignored): Resource temporarily unavailable nslcd: [1b58ba] <authc="myuser"> DEBUG: set_socket_timeout(3600,500000) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_result(): cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net nslcd: [1b58ba] <authc="myuser"> DEBUG: myldap_search(base="cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net", filter="(objectClass=*)") nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_initialize(ldap://BIND-SERVER:389) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_rebind_proc() nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_PROTOCOL_VERSION,3) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_DEREF,0) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_TIMELIMIT,3600) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_TIMEOUT,3600) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_NETWORK_TIMEOUT,3600) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_REFERRALS,LDAP_OPT_ON) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_set_option(LDAP_OPT_RESTART,LDAP_OPT_ON) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_sasl_bind("cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net","***") (uri="ldap:// BIND-SERVER:389") (ppolicy=yes) nslcd: [1b58ba] <authc="myuser"> DEBUG: set_socket_timeout(3600,500000) nslcd: [1b58ba] <authc="myuser"> DEBUG: myldap_search(base="cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net", filter="(objectClass=*)") nslcd: [1b58ba] <authc="myuser"> ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28), errSystem=Ldap, errCode=10, errString=Referral nslcd: [1b58ba] <authc="myuser"> cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net: No such object nslcd: [1b58ba] <authc="myuser"> DEBUG: set_socket_timeout(1800,0) nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_unbind() nslcd: [1b58ba] <authc="myuser"> DEBUG: myldap_search(base="dc=novartis,dc=net", filter="(&(objectClass=posixAccount)(uid=myuser))") nslcd: [1b58ba] <authc="myuser"> DEBUG: ldap_result(): cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net nslcd: [1b58ba] <authc="myuser"> cn=MYUSER,ou=Users,ou=PH,ou=INHY,dc=ap,dc=novartis,dc=net: "${shadowWarning:--1}": Password will expire in 7 days *************************************************** Below is the extract of entries that are enabled in our nslcd.conf *************************************************** uid nslcd gid ldap uri ldap://BIND-SERVER:389 base dc=novartis,dc=net binddn BIND-USER bindpw BIND-PASS base passwd dc=novartis,dc=net bind_timelimit 3600 timelimit 3600 nss_initgroups_ignoreusers root,rstudio-server cache dn2uid 8h filter passwd (objectClass=posixAccount) map passwd homeDirectory "/home/$uid" map passwd gecos displayName map passwd loginShell "/bin/bash" filter shadow (objectClass=posixAccount) map shadow uid uid map shadow userPassword userPassword *************************************************** Thanks & Regards ANIRUDH CHOUDARY Providing Services to Novartis Pharma AG e-mail :
anirudh.choudary@novartis.com |
- nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28), CHOUDARY, ANIRUDH (Ext)
- Re: nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28), Arthur de Jong
- Message not available
- Prev by Date: LDAP server event notifications
- Next by Date: Re: nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28)
- Previous by thread: LDAP server event notifications
- Next by thread: Re: nslcd.conf - ldap_result() failed: No such object: cdcLdapSearch :System error (cdcRC=28)