From owner-freebsd-questions@FreeBSD.ORG Wed Oct 14 22:33:46 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5CBCE1065692 for ; Wed, 14 Oct 2009 22:33:46 +0000 (UTC) (envelope-from ccowart@rescomp.berkeley.edu) Received: from hal.rescomp.berkeley.edu (hal.Rescomp.Berkeley.EDU [169.229.70.150]) by mx1.freebsd.org (Postfix) with ESMTP id 452A18FC33 for ; Wed, 14 Oct 2009 22:33:46 +0000 (UTC) Received: by hal.rescomp.berkeley.edu (Postfix, from userid 1225) id EF442597CE0; Wed, 14 Oct 2009 15:33:45 -0700 (PDT) Date: Wed, 14 Oct 2009 15:33:45 -0700 From: Chris Cowart To: Craig Butler Message-ID: <20091014223345.GA11723@hal.rescomp.berkeley.edu> Mail-Followup-To: Craig Butler , freebsd-questions References: <1255556963.1258.4.camel@coyote.lerwick.hopto.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-ripemd160; protocol="application/pgp-signature"; boundary="wac7ysb48OaltWcw" Content-Disposition: inline In-Reply-To: <1255556963.1258.4.camel@coyote.lerwick.hopto.org> Organization: RSSP-IT, UC Berkeley User-Agent: Mutt/1.5.20 (2009-06-14) Cc: freebsd-questions Subject: Re: ldap and pam-mkhomedir, anyone know how to set directory ownership to the ldap user logging in ?? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Oct 2009 22:33:46 -0000 --wac7ysb48OaltWcw Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Craig Butler wrote: > Currently I have got pam authenticating against ldap and mkhomedir > creating the home directories, but they are created owned as root:wheel > and the user can't write to their own home directory -- I have read the > man page for pam_mkhomedir, the only way I see it working at the moment > is setting an insecure umask in the pam definition.... >=20 > Any ideas on how I can get them owned by the ldap user signing in ? It should "Just Work". Do you have the accounts properly configured in /etc/nsswitch.conf?=20 If you: getent passwd USER For the account whose home directory isn't being created correctly? Do you see the entry? --=20 Chris Cowart Network Technical Lead Network & Infrastructure Services, RSSP-IT UC Berkeley --wac7ysb48OaltWcw Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.12 (FreeBSD) iQIcBAEBAwAGBQJK1lHJAAoJEC8b9sM8ejXtSxoP/0Adyy7fIb1Ht14hjhlnYaml iQEsEzYK6fq9672E3mFni66IEf96O5Qq2FoTm/qUBMrTPahm+xtVbJO4H7DnYLnM WnXn/IvzFqb2jcYGNx9Qv+oTCjk65nBgLDRkxhXiJ6ewLxl3/mdCUkYf5+u0L+Gg bSdiK21RgFSVIrtQQ8Z6BQdehKdcyIaGZLKP8e9lbe1Ofl+qOgCjSrpjRNiIhenN 44v3XK4FsxSxF7ywTTcfHeGB+5bfS092wfOp19Dyn5GgEEHHfVq6u7OHB8DQ458G DAkVaubhfjlT+Zh3zjlzpUCqJRt4YpHGe8vNiQ4kxzfh5nzHLkkXDGiZ2QuBV+kz K0YsyodRjuRdxbleeBDGxvlbag1rGDDbThQ4mqKG4PwqMP0Nspa86O58w3KhZIem sGqXeGFRzwvioXDVlaG3PvFf0UlCpg8wJOCvJQS7LASM797Fi5Ls7bNi8bNgb4AL dh517gfQXY3mEtme6JBSPuSHRozaWxG931PUK4n10wHZG7pVsGlWnHp5PSnmlynv dqQPiD50nT095Z2LT22u0LYC7M0WSCep2heET5DeH9+PzCMVI0CLKM49BGG0FuVH ClB2zSF3Qwh5J5xUznennY5Y2P8RP2ciVXTr69y60GZyef83DQuUy8xVIIeqlNtH KGi3LImFer9R/4ZM3tQA =iCGm -----END PGP SIGNATURE----- --wac7ysb48OaltWcw--