From owner-freebsd-questions@FreeBSD.ORG Sat Oct 31 06:50:00 2009 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2A68B1065704 for ; Sat, 31 Oct 2009 06:50:00 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) by mx1.freebsd.org (Postfix) with ESMTP id CD4008FC17 for ; Sat, 31 Oct 2009 06:49:59 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id 1E9E63A3839 for ; Sat, 31 Oct 2009 13:49:58 +0700 (ICT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= subject:subject:from:from:message-id:date:date:received:received :received; s=selector1; t=1256971797; x=1258786197; bh=WXBWXUu1j XWCYWd46B3GrsaBQ0KHKhixVPm6RLsRsss=; b=YLOH3QwIMLiW/ywyMqSwXyNiQ n10QQVuSOm96niN05My6YwfSODcnzFmkC0KiAmbYzk0OxLvQI8dyU7ZTm0MUqWBL R9C4zCAzYXkR4efgf7uhwAV1Q7n6e2rQ1KsLpg4XBj9WGDxWBz03XH4mONAoea+x 46jkDE5zdpq59GxByk= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by localhost (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 9PCXR5so0tf4 for ; Sat, 31 Oct 2009 13:49:57 +0700 (ICT) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id 599B23A382C for ; Sat, 31 Oct 2009 13:49:57 +0700 (ICT) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.14.3/8.14.3/Submit) id n9V6nuX2009185; Sat, 31 Oct 2009 13:49:56 +0700 (ICT) (envelope-from on) Date: Sat, 31 Oct 2009 13:49:56 +0700 (ICT) Message-Id: <200910310649.n9V6nuX2009185@banyan.cs.ait.ac.th> From: Olivier Nicole To: questions@freebsd.org Cc: Subject: Strange behaviour of nss_ldap in 7.2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 31 Oct 2009 06:50:00 -0000 Hi, I am using nss_ldap without problem on a machine with FreeBSD 6.4 amd64. Now I wanted to make a similar configuration with a machine running FreeBSD 7.2 i386, but I have a problem: - as root, getent passwd gives me the list of users in /etc/passwd and in LDAP; - as user. getent passwd only gives me list of users in /etc/passwd. Example: samba<1001>: ls -l toto -rw-r--r-- 1 1001 30 0 Oct 31 13:21 toto samba<1001>: sudo ls -l toto Password: -rw-r--r-- 1 on staff 0 Oct 31 13:21 toto The group ID and user ID are not resolved. On the machine that is working: banyan47: ls -l toto -rw-r--r-- 1 on csimstaff 0 Oct 31 13:46 toto banyan48: sudo ls -l toto Password: -rw-r--r-- 1 on csimstaff 0 Oct 31 13:46 toto The user and grup ID are resolved. Note that I can authenticate against LDAP without problem (sudo with pam_ldap works and ssh work). I have copied nss_ldap.conf and nsswitch.conf from the 6.4 to the 7.2 machine (with needed name changing). Both LDAP servers are running almost the same thing, ACL are the same. I have tried to remove the ACL on LDAP server without success. I am stuck with a different behaviour between 6.4 and 7.2, any help will be greatly appreciated as I need to solve that problm urgently. TIA, Olivier