Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

LDAP authentication works fine, passwd gives error

Posted on 2006-06-21
4
Medium Priority
?
422 Views
Last Modified: 2010-03-17
I have configured my home linux network (FC4 all around) to authenticate to a central OpenLDAP server.  Logins for all users work fine.

When I log in as a user and attemtp the passwd command, however, I get the following:


[tim@linux03 ~]$ passwd
Changing password for user tim.
Enter login(LDAP) password:
New UNIX password:
Retype new UNIX password:
LDAP password information update failed: Can't contact LDAP server

passwd: Permission denied


Here's anything relevant from my nsswitch.conf:

passwd:     files ldap
shadow:     files ldap
group:      files ldap
bootparams: nisplus [NOTFOUND=return] files
ethers:     files
netmasks:   files
networks:   files
protocols:  files ldap
rpc:        files
services:   files ldap
netgroup:   files ldap
publickey:  nisplus
automount:  files ldap
aliases:    files nisplus


here's my ldap.conf:

HOST 192.168.1.10
BASE dc=devnet
TLS_CACERTDIR /etc/openldap/cacerts


I'm not sure what I'm doing wrong.  Can anyone advise?
0
Comment
Question by:parkblock
4 Comments
 
LVL 14

Expert Comment

by:pablouruguay
ID: 16959262
0
 
LVL 1

Author Comment

by:parkblock
ID: 16994007
turned out to be a problem with the ACL.  default acl was insufficient, I had to add the following in slapd.conf -

access to attr=userpassword
       by self                 write
       by anonymous            auth
       by *                    none
access to *
       by self                 write
       by users                read
       by anonymous            read
       by *                    none

0
 
LVL 1

Accepted Solution

by:
DarthMod earned 0 total points
ID: 17200573
PAQed with points refunded (500)

DarthMod
Community Support Moderator
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
this video summaries big data hadoop online training demo (http://onlineitguru.com/big-data-hadoop-online-training-placement.html) , and covers basics in big data hadoop .
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Suggested Courses

926 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question