No output from getent netgroup

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Per Foreby <per.foreby [at] lth.lu.se>
To: <nss-pam-ldapd-users [at] lists.arthurdejong.org>
Subject: No output from getent netgroup
Date: Sat, 20 Aug 2022 17:11:44 +0200

Hi,

i replaced libnss-ldap and libpam-ldap with libnss-ldapd andlibpam-ldapd in Ubuntu 22.04.

Looking up users and groups is no problem, but I get no output withnetgroups. This works fine with the older ldap modules, but not withnslcd. Example:


# getent.ldap netgroup meitnerc
#


This is the debug output from nslcd:

nslcd: [b141f2] DEBUG: connection from  pid=4262 uid=0 gid=0

nslcd: [b141f2] <netgroup="meitnerc"> DEBUG:myldap_search(base="ou=Netgroup,dc=student,dc=lth,dc=se",filter="(&(objectClass=nisNetgroup)(cn=meitnerc))")nslcd: [b141f2] <netgroup="meitnerc"> DEBUG: ldap_result():cn=meitnerc,ou=Netgroup,dc=student,dc=lth,dc=senslcd: [b141f2] <netgroup="meitnerc"> DEBUG: ldap_result(): end ofresults (1 total)


If I use the same searchbase and filter with ldapsearch it looks fine:

# ldapsearch -x -b ou=Netgroup,dc=student,dc=lth,dc=se -Hldap://ldap.ddg.lth.se "(&(objectClass=nisNetgroup)(cn=meitnerc))"

# extended LDIF
#
# LDAPv3
# base <ou=Netgroup,dc=student,dc=lth,dc=se> with scope subtree
# filter: (&(objectClass=nisNetgroup)(cn=meitnerc))
# requesting: ALL
#

# meitnerc, Netgroup, student.lth.se
dn: cn=meitnerc,ou=Netgroup,dc=student,dc=lth,dc=se
objectClass: top
objectClass: nisNetgroup
cn:: bWVpdG5lcmMgICAg
nisNetgroupTriple: (meitner-1.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-2.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-3.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-4.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-5.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-6.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-7.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-8.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-9.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-10.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-11.fys.lth.lu.se,,)
nisNetgroupTriple: (meitner-12.fys.lth.lu.se,,)

# search result
search: 2
result: 0 Success

# numResponses: 2
# numEntries: 1

Any clue to what the problem is? Could it have something to do with ouropenldap returning cn base64 encoded?


/Per

No output from getent netgroup, Per Foreby

Re: No output from getent netgroup, Arthur de Jong

Prev by Date: Re: a group problem?
Next by Date: Re: No output from getent netgroup
Previous by thread: Re: [0.9.x] Invalid nslcd version id: 0x01000000 in Centos7.9
Next by thread: Re: No output from getent netgroup