From owner-freebsd-questions@FreeBSD.ORG Mon Oct 22 13:19:20 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9A56B16A46B for ; Mon, 22 Oct 2007 13:19:20 +0000 (UTC) (envelope-from ohartman@zedat.fu-berlin.de) Received: from outpost1.zedat.fu-berlin.de (outpost1.zedat.fu-berlin.de [130.133.4.66]) by mx1.freebsd.org (Postfix) with ESMTP id 5414E13C4CC for ; Mon, 22 Oct 2007 13:19:19 +0000 (UTC) (envelope-from ohartman@zedat.fu-berlin.de) Received: from inpost2.zedat.fu-berlin.de ([130.133.4.69]) by outpost1.zedat.fu-berlin.de (Exim 4.67) with esmtp (envelope-from ) id <1IjxBW-0001Dr-2Q>; Mon, 22 Oct 2007 15:19:10 +0200 Received: from telesto.geoinf.fu-berlin.de ([130.133.86.198]) by inpost2.zedat.fu-berlin.de (Exim 4.67) with esmtpsa (envelope-from ) id <1IjxBW-0001GI-17>; Mon, 22 Oct 2007 15:19:10 +0200 Message-ID: <471CA35D.7080401@zedat.fu-berlin.de> Date: Mon, 22 Oct 2007 13:19:25 +0000 From: "O. Hartmann" Organization: Freie =?ISO-8859-15?Q?Universit=E4t_Berlin?= User-Agent: Thunderbird 2.0.0.6 (X11/20070803) MIME-Version: 1.0 To: Per olof Ljungmark References: <471B7DCF.2020709@mail.zedat.fu-berlin.de> <471BFBED.5070705@intersonic.se> In-Reply-To: <471BFBED.5070705@intersonic.se> Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: 7bit X-Originating-IP: 130.133.86.198 Cc: "O. Hartmann" , freebsd-questions@freebsd.org Subject: Re: OpenLDAP 2.3/pam_ldap/nss_ldap: not working in FreeBSD 7.0-PRE! X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Oct 2007 13:19:20 -0000 Per olof Ljungmark wrote: > O. Hartmann wrote: >> For weeks now I tried to get an OpenLDAP-server on a local FreeBSD >> 7.0-PRE box running, but with no success. Within the last 8 weeks I >> tried nearly EVERY tutorial and there explained setups, but whenever I >> try to authenticate or find an ID for an existing user in the DIT, I >> receive either errors that the client (pam/nss, ssh, id etc.) can not >> connect to the slapd running on the same machine. > > > We have this config running on 7 since months. I suggest you provide the > list with more information + log excerpts, then someone might help you out. > > --per Well, great, I appreciate your help and by teh way, you're the first one telling he's running FBSD 7 AND OpenLDAP/nss_ldap/pam_ldap. OpenLDAP is running well on the server, I can access the DIT via some tools like LUMA and the OpenLDAP clients from remote machines. A major problem seems to be the pam_ldap/nss_ldap configuration. Can you please tell me how you edited /etc/pam.d/ files and /etc/nsswitch.conf properly? At this very moment it seems that I shot myself into the foot - the box running the LDAP service does not start OpenLDAP service slapd after rebooting, the console is stuck at the message shown when 'additional ABI's' get started. So, I'm sorry having no logs handy at this very moment, I will offer them as soon as possible included with my config files, if this will not bother you. Thanks in advance, Oliver -- Planetology and Remote Sensing FU Berlin