From owner-freebsd-questions Mon Sep 17 16: 1:31 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.the-i-pa.com (mail.the-i-pa.com [151.201.71.132]) by hub.freebsd.org (Postfix) with SMTP id 3E76F37B408 for ; Mon, 17 Sep 2001 16:01:27 -0700 (PDT) Received: (qmail 42632 invoked from network); 17 Sep 2001 23:11:48 -0000 Received: from unknown (HELO proxy.the-i-pa.com) (151.201.71.210) by mail.the-i-pa.com with SMTP; 17 Sep 2001 23:11:48 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Bill Moran Organization: Potential Technology To: questions@freebsd.org Subject: pam_ldap and FreeBSD 4.3 Date: Mon, 17 Sep 2001 19:04:27 -0400 X-Mailer: KMail [version 1.2] MIME-Version: 1.0 Message-Id: <01091719042702.00330@proxy.the-i-pa.com> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Does anyone have pam_ldap working on FreeBSD? I'm trying to get it going with FreeBSD 4.3-RELEASE. Apparently, the fact that nss_ldap doesn't work on FreeBSD yet is causing the failure. For example: If I put an account on the ldap server: username = test password = word1 uid = 1000 I can not log in. No ldap errors, just rejected login, however, if I also create a local user in /etc/password: username = test password = completelydifferent uid = 1000 I can now log in as "test" using the password "word1". Apparently, pam_ldap is working, but FreeBSD won't let the login complete unless it can convert the uid back to a name. Is there a workaround for this? Or do I need to fall back on NIS and use that? It really seems like a shame not to be able to use this. Is someone working on getting nss working that I could help out? -- Bill Moran Potential Technology technical services (412) 793-4257 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message