Re: ldapsearch is fine but from authentication purpose its not doing anything

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I assume you are using TLS. You need to use fqdn not ip of centos directory server, configure firewall for 389 or 636 port.

Please send content of /etc/nsswitch.conf and /etc/ldap.conf

28-07-2012 18:13, "Fosiul Alam" <fosiul@xxxxxxxxx> napisał(a):
Hi
I configured another pc
with authconfig-tui
but there is not any luck
its same thing ..

Fosiul

On Sat, Jul 28, 2012 at 4:04 PM, Grzegorz Dwornicki <gd1100@xxxxxxxxx> wrote:
> In other mail I've told you: use authconfig or authconfig-tui or
> system-config-authentication to setup system for ldap authentication. For
> example authconfig-tui has simple text-based interface, authconfig is CLI
> based and require arguments. Finally system-config-authentication has gui.
>
> 28-07-2012 16:50, "Fosiul Alam" <fosiul@xxxxxxxxx> napisał(a):
>>
>> Hi
>> I have setup ldap server and from client its returning example :
>>
>> [root@home ~]# ldapsearch -x -ZZ -D "cn=Directory manager" -w xxx  -h
>> ldap-2.fosiul.lan -b "dc=fosiul,dc=lan" "(cn=Fosiul Alam)"
>> # extended LDIF
>> #
>> # LDAPv3
>> # base <dc=fosiul,dc=lan> with scope subtree
>> # filter: (cn=Fosiul Alam)
>> # requesting: ALL
>> #
>>
>> # falam, users, uk, fosiul.lan
>> dn: uid=falam,ou=users,l=uk,dc=fosiul,dc=lan
>> givenName: Fosiul
>> sn: Alam
>> loginShell: /bin/bash/bash
>> uidNumber: 1000
>> gidNumber: 3000
>> objectClass: top
>> objectClass: person
>> objectClass: organizationalPerson
>> objectClass: inetorgperson
>> objectClass: posixAccount
>> uid: falam
>> cn: Fosiul Alam
>> homeDirectory: /home/falam
>> userPassword:: e1NTSEF9UGtqNjhvSU1pSR0RrSWNYYkVvYVU2V2c9PQ=
>>  =
>>
>> # search result
>> search: 3
>> result: 0 Success
>>
>> # numResponses: 2
>> # numEntries: 1
>>
>> and in the access log :
>>
>> 28/Jul/2012:15:42:57 +0100] conn=229 fd=70 slot=70 connection from
>> 192.0.0.4 to 192.0.0.9
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=0 EXT
>> oid="1.3.6.1.4.1.1466.20037" name="startTLS"
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=0 RESULT err=0 tag=120
>> nentries=0 etime=0
>> [28/Jul/2012:15:42:57 +0100] conn=229 SSL 256-bit AES
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=1 BIND dn="cn=Directory
>> manager" method=128 version=3
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=1 RESULT err=0 tag=97
>> nentries=0 etime=0 dn="cn=directory manager"
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=2 SRCH
>> base="dc=fosiul,dc=lan" scope=2 filter="(cn=Fosiul Alam)" attrs=ALL
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=2 RESULT err=0 tag=101
>> nentries=1 etime=0
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=3 UNBIND
>> [28/Jul/2012:15:42:57 +0100] conn=229 op=3 fd=70 closed - U1
>>
>>
>> But From command line , when i do
>> [root@home ~]# id falam
>> id: falam: No such user
>>
>>
>>
>> [28/Jul/2012:15:44:26 +0100] conn=230 fd=70 slot=70 connection from
>> 192.0.0.4 to 192.0.0.9
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=0 EXT
>> oid="1.3.6.1.4.1.1466.20037" name="startTLS"
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=0 RESULT err=0 tag=120
>> nentries=0 etime=0
>> [28/Jul/2012:15:44:26 +0100] conn=230 SSL 256-bit AES
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=1 BIND dn="" method=128 version=3
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=1 RESULT err=0 tag=97
>> nentries=0 etime=0 dn=""
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=2 SRCH
>> base="dc=fosiul,dc=lan" scope=2
>> filter="(&(objectClass=posixAccount)(uid=falam))" attrs="uid
>> userPassword uidNumber gidNumber cn homeDirectory loginShell gecos
>> description objectClass"
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=2 RESULT err=0 tag=101
>> nentries=0 etime=0
>> [28/Jul/2012:15:44:26 +0100] conn=230 op=-1 fd=70 closed - B1
>>
>>
>> So basically, ldapsearch is working but authentication is not working  ..
>>
>> Can any one please help me with this .
>> and i am using Centos 5.8
>>
>> Fosiul.
>> --
>> 389 users mailing list
>> 389-users@xxxxxxxxxxxxxxxxxxxxxxx
>> https://admin.fedoraproject.org/mailman/listinfo/389-users
>
>
> --
> 389 users mailing list
> 389-users@xxxxxxxxxxxxxxxxxxxxxxx
> https://admin.fedoraproject.org/mailman/listinfo/389-users



--
Regards
Fosiul Alam
07877100621
http://www.fosiul.co.uk
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
--
389 users mailing list
389-users@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/389-users
[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux