Date: Fri, 20 Jan 2006 08:36:20 +0100 (CET) From: Joerg Pulz <Joerg.Pulz@frm2.tum.de> To: Andrew MacTaggart <amactaggart@hkis.edu.hk> Cc: freebsd-net@freebsd.org Subject: Re: nss_ldap and pam_ldap troubles Message-ID: <20060120083440.H1074@hades.admin.frm2> In-Reply-To: <s3d0d170.021@rbsmtp1.hkis.edu.hk> References: <s3d0d170.021@rbsmtp1.hkis.edu.hk>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 20 Jan 2006, Andrew MacTaggart wrote: > having trouble getting nss_ldap and Pam_ldap to work. > > running freebsd 5.4 > ldap - edirectory - remote server > ldapsearch works > > installed nss_ldap > installed pam_ldap > change parameters in ldap.conf and nss_ldap.conf > host 10.x.x.x > base o=mybase > basspw = XXXXXXXXXXXX > > nsswitch.conf > > group: files ldap > passwd: files ldap > > pam.d/sshd > > auth sufficient /usr/local/lib/pam_ldap.so no_warn try_first_pass > > can't figure out how to enable logging > > ssh fails but it takes longer like it is querry something. > > need help on how to enable logging for pam_ldap and nss_ldap > > need to know where I am making a mistake. > > debug would be helpful. Try the following lines in nss_ldap.conf and ldap.conf: logdir /var/log debug 9 Now you should get a seperate file for every process which is using either pam_ldap or nss_ldap. Joerg - -- The beginning is the most important part of the work. -Plato -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFD0JL3SPOsGF+KA+MRAqVWAJ9Y6ImfYN/zUjIGxtRHR9p1ugBC6ACbBeYj pGOVntAynd6lDfa45EH2Dk8= =2Yb9 -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060120083440.H1074>