From owner-freebsd-net@FreeBSD.ORG Fri Feb 10 11:29:05 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4E75916A420 for ; Fri, 10 Feb 2006 11:29:05 +0000 (GMT) (envelope-from rebehn@ant.uni-bremen.de) Received: from antsrv1.ant.uni-bremen.de (antsrv1.ant.uni-bremen.de [134.102.176.16]) by mx1.FreeBSD.org (Postfix) with ESMTP id E3BA343D46 for ; Fri, 10 Feb 2006 11:29:04 +0000 (GMT) (envelope-from rebehn@ant.uni-bremen.de) Received: from bremerhaven.ant.uni-bremen.de ([134.102.176.10]) by antsrv1.ant.uni-bremen.de with esmtp (Exim 4.60 (FreeBSD)) (envelope-from ) id 1F7WSR-0000ZG-SU; Fri, 10 Feb 2006 12:28:59 +0100 Message-ID: <43EC78FB.3020709@ant.uni-bremen.de> Date: Fri, 10 Feb 2006 12:28:59 +0100 From: Heinrich Rebehn User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.1) Gecko/20060130 SeaMonkey/1.0 MIME-Version: 1.0 To: freebsd-net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Startup problems with openldap and nss_ldap X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2006 11:29:05 -0000 Hi list, Since my last protupgrade i am having severe startup problems. /usr/local/etc/rc.d/slapd.sh had already taken quite some time in the past, but now it has become even worse. I interrupted with ^C after a few minutes, and when i tried to login as root on the console, i had to wait again for some minutes. There seems to be a chicken/egg pproblem here: slapd is by default started with "-u ldap -g ldap", but this requires a ruuning slapd to resolve "ldap", although it is in the local files. What also concerns me, is that even root login is hindered by slapd not running, although the root password is, of course, stored locally. I found out that i can remedy this situation by starting slapd simply with "/usr/local/exec/slapd", i.e. as root, but i think the default startup as "ldap" is there for a reason. Is there any clean solution for this? My configuration: root@antsrv1 [~] # uname -r 5.4-RELEASE-p8 root@antsrv1 [~] # pkg_info -Ix ldap nss_ldap-1.244 RFC 2307 NSS module openldap-client-2.2.30 Open source LDAP client implementation openldap-server-2.2.30 Open source LDAP server implementation pam_ldap-1.8.0 A pam module for authenticating with LDAP root@antsrv1 [~] # root@antsrv1 [~] # cat /etc/nsswitch.conf group: files[success=return] ldap #group_compat: nis hosts: files dns networks: files passwd: files[success=return] ldap #passwd_compat: nis shells: files Thanks for any help, Heinrich Rebehn University of Bremen Physics / Electrical and Electronics Engineering - Department of Telecommunications - Phone : +49/421/218-4664 Fax : -3341