LDAP authentication works fine, passwd gives error

I have configured my home linux network (FC4 all around) to authenticate to a central OpenLDAP server.  Logins for all users work fine.

When I log in as a user and attemtp the passwd command, however, I get the following:


[tim@linux03 ~]$ passwd
Changing password for user tim.
Enter login(LDAP) password:
New UNIX password:
Retype new UNIX password:
LDAP password information update failed: Can't contact LDAP server

passwd: Permission denied


Here's anything relevant from my nsswitch.conf:

passwd:     files ldap
shadow:     files ldap
group:      files ldap
bootparams: nisplus [NOTFOUND=return] files
ethers:     files
netmasks:   files
networks:   files
protocols:  files ldap
rpc:        files
services:   files ldap
netgroup:   files ldap
publickey:  nisplus
automount:  files ldap
aliases:    files nisplus


here's my ldap.conf:

HOST 192.168.1.10
BASE dc=devnet
TLS_CACERTDIR /etc/openldap/cacerts


I'm not sure what I'm doing wrong.  Can anyone advise?
LVL 1
parkblockAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
DarthModConnect With a Mentor Commented:
PAQed with points refunded (500)

DarthMod
Community Support Moderator
0
 
pablouruguayCommented:
0
 
parkblockAuthor Commented:
turned out to be a problem with the ACL.  default acl was insufficient, I had to add the following in slapd.conf -

access to attr=userpassword
       by self                 write
       by anonymous            auth
       by *                    none
access to *
       by self                 write
       by users                read
       by anonymous            read
       by *                    none

0
All Courses

From novice to tech pro — start learning today.