Date: Wed, 6 Oct 2010 10:00:08 -0700 From: Jason <jhelfman@e-e.com> To: Dan Nelson <dnelson@allantgroup.com> Cc: freebsd-questions <freebsd-questions@freebsd.org>, Kevin Mai <kma@mrecic.gov.ar> Subject: Re: LDAP Authentication from console Message-ID: <20101006170008.GC79870@eggman.experts-exchange.com> In-Reply-To: <20101006165953.GN40148@dan.emsphone.com> References: <1258599465.73510.1286378314723.JavaMail.root@mrelmx10.mrec.ar> <20101006165953.GN40148@dan.emsphone.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Oct 06, 2010 at 11:59:53AM -0500, Dan Nelson thus spake: >In the last episode (Oct 06), Kevin Mai said: >> Hey guys, >> >> I've already configured PAM to authenticate against ldap and it works >> wonderful using ssh/su/sudo/etc, but when I try to log in from console it >> prompts: >> >> login: kma >> Password: xxxxxxxx >> LDAP Password: xxxxxxxx (same as the first one) >> Login Incorrect >> login: > >Compare /etc/pam.d/login against one of your other pam services that works. >What I do on my servers is add pam_ldap to pam.d/system, then blow away most >of the lines in the other files and replace them with > >auth include system >account include system >session include system >password include system > >, so I know everything uses the same configuration. Back when I had used LDAP for authentication I also needed to edit /etc/nsswitch.conf Not sure if this is still the case, or if I was doing it incorrectly, however not having didn't give me the ability to login via ldap. -jgh
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20101006170008.GC79870>