Re: nsswitch.conf pam_ldap and nss_ldap

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Tommy McNeely wrote:
My network has a Sun LDAP server (for pam_ldap) with extra stuff to
support linux and works for RH 7.x and up.. except below

I lost my psyche box last night.. I ran a full "up2date -fu" ...
rebooted.. and there were TONS of strange errors about users not
existing during boot.. when it got to the console login screen, I could
not even login as root... snooping on the ldapserver showed that it was
doing ldap searches, even for local accounts?? which I thought I filed a
bug on back in 7.2?? guess that its not fixed yet...
I've been testing this using OpenLDAP on Red Hat 8 with Red Hat 8 clients and the problem is still there. There are several bugzillas about it, look at 63631 and 63717 and 79198.

If your client is configured to look at LDAP and the server is not available for any reason, you are screwed. I had to boot with a rescue CD, then mount / and edit /etc/pam.d/system-auth file and comment all all references to ldap. Then, I could log back in as root.

One of those bugzillas has a work around that I haven't been able to test yet. May be a solution for psyche clients.

Best Regards,
Keith
--
LPIC-2, MCSE, N+
We drive on this highway of fire
Got spam? Get spastic http://spastic.sourceforge.net



--
Psyche-list mailing list
Psyche-list@redhat.com
https://listman.redhat.com/mailman/listinfo/psyche-list

[Index of Archives]     [Fedora General Discussion]     [Red Hat General Discussion]     [Centos]     [Kernel]     [Red Hat Install]     [Red Hat Watch]     [Red Hat Development]     [Red Hat 9]     [Gimp]     [Yosemite News]

  Powered by Linux