Date: Sun, 22 Jan 2006 18:42:29 +1030 From: "Daniel O'Connor" <doconnor@gsoft.com.au> To: Andrew Zenk <zenk0022@umn.edu> Cc: freebsd-stable@freebsd.org Subject: Re: Using [Open]LDAP for authentication Message-ID: <200601221842.38568.doconnor@gsoft.com.au> In-Reply-To: <43D314B9.2000400@umn.edu> References: <200601201130.18872.doconnor@gsoft.com.au> <200601211452.16670.doconnor@gsoft.com.au> <43D314B9.2000400@umn.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
--nextPart1762521.TBsC5POQYE Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Sunday 22 January 2006 15:44, Andrew Zenk wrote: > My guess is that you have a group (wheel) defined in /etc/group that > is conflisting with the one in ldap. I've had this issue before. I > solved it by deleteing the offending group from the group file. > Another solution would be to tell sudo to look for a different group > and make sure the LDAP group is unique. Yeah, I worked around it by adding the few sudo/su users to the group file. I am surprised that this is necessary though - I would expect nss to look=20 through all resources and merge group entries. =2D-=20 Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C --nextPart1762521.TBsC5POQYE Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQBD0z525ZPcIHs/zowRAj1uAJwKw6qAZozfQS3jYJj+Q8jqBSOxuQCeI9D7 mtvOyEHDRu293Xd/k9KQous= =Ucs8 -----END PGP SIGNATURE----- --nextPart1762521.TBsC5POQYE--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200601221842.38568.doconnor>