ldap bug in hardy

Marco Schmidt schmidt at fgcz.ethz.ch
Wed Apr 30 09:01:32 UTC 2008 

The config files are a bit confusing.

What I found out:

/etc/ldap/ldap.conf is used by the ldap tools (ldapsearch, etc)

/etc/ldap.conf is used by libnss_ldap

/etc/libnss_ldap.conf is not used by ubuntu, but it is used by the 
libnss_ldap on debian.

I made links that all three files are the same.

Christian Stegmann wrote:
> Hello,
> 
> I am facing similar problems. Despite a lot of effort I could not get
> my LDAP client setup to run on Hardy (it runs smoothly on Dapper on
> another machine). First I followed strictly
> https://help.ubuntu.com/community/LDAPClientAuthentication. However,
> /etc/libnss-ldap.conf or /etc/libpam-ldap.conf are not generated after
> the installation of the packages.
> Then I tried to reproduce the Dapper-setup by manually editing
> /etc/libnss-ldap.conf and /etc/libpam-ldap.conf. I also commented out
> the aforementioned pam_smbpass.so related lines. This also failed,
> getent passwd does not work.
> I can access the server using ldapsearch -x though. Any help appreciated.
> 
> thanks,
> christian
> 
> On Wed, Apr 30, 2008 at 9:14 AM, Marco Schmidt <schmidt at fgcz.ethz.ch> wrote:
>> Thanks for your answer.
>>
>>  libpam-smbpass is and was not installed. There are no libpam-smbpass
>> entries in any pam.d files.
>>
>>  To make sure, I installed libpam-smbpass. But no change in the ldap
>> behavior.
>>
>>  # id user
>>
>>  id: result.c:112: ldap_result: Assertion `ld != ((void *)0)' failed.
>>  uid=10039(user) gid=10147(group1)Aborted
>>
>>  /var/log/auth.log
>>  Apr 30 09:09:33 hostname id: nss_ldap: could not search LDAP server -
>> Server is unavailable
>>
>>  With ldapsearch or getent I can contact the server without problems.
>>
>>
>>  NoOp wrote:
>>
>>> On 04/29/2008 07:14 AM, Marco Schmidt wrote:
>>>
>>>
>>>> Exactly the same config under gutsy (7.10) works great.
>>>>
>>>> The problem occurs on a hardy upgrade and on a hardy fresh installation.
>>>>
>>>> I compiled and installed openldap 2.4.8 and nss_ldap 260 on my own (with
>>>> the default settings)
>>>>
>>>> Now it works perfectly!
>>>>
>>>> Could there be a bug in ldap version 2.4.7-6ubuntu3 of nss_ldap
>>>> 258-1ubuntu3 (ubuntu hardy)?
>>>>
>>> You might check your old auth.log's and see if you find errors like this:
>>>
>>> PAM unable to dlopen(/lib/security/pam_smbpass.so)
>>>
>>> https://bugs.launchpad.net/ubuntu/+bug/222003
>>> [Can't contact LDAP server]
>>>
>>> There have been quite a few issues with some of the pam.d files
>>> referencing pam_smbpass.so. Some have resolved with installing
>>> libpam-smbpass, but it can be resolved by commenting out the
>>> pam_smbpass.so related lines in /etc/pam.d/common-auth and
>>> /etc/pam.d/common-password:
>>>
>>> https://bugs.launchpad.net/ubuntu/+source/pam/+bug/216990
>>> commenting out the pam_smbpass.so related lines in
>>> /etc/pam.d/common-auth and /etc/pam.d/common-password
>>>
>>>
>>>
>>
>>
>> --
>>  ubuntu-users mailing list
>>  ubuntu-users at lists.ubuntu.com
>>  Modify settings or unsubscribe at:
>> https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>>
>>
> 
> 
> 

-- 
+-------------------------------------------------------------+
|Marco Schmidt                Datenbank- & Systemadministrator|
|Universität Zürich                                           |
|Functional Genomics Center Zurich (FGCZ) UNI/ETH             |
|Irchel, Y32 H 06                        Tel: +41-44-635-3902 |
|Winterthurerstrasse 190                 Fax: +41-44-635-3922 |
|CH-8057 Zürich                          schmidt at fgcz.ethz.ch |
+----Never let a technical device know you're in a hurry!-----+

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3299 bytes
Desc: S/MIME Cryptographic Signature
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20080430/c95a8780/attachment.bin>

More information about the ubuntu-users mailing list