[ale] LDAP Authentication Issue

Sam Davis aracthabar at gmail.com
Fri May 16 10:41:44 EDT 2014


Thank you to everyone who has replied so far.  David, you probably do 
know more about this system than I do, since you set it up.

1) Only 1 user is affected, someone added since you left.
2) Multiple machines.  He's only reported issues on three machines so 
far.   I did some spot checking and didn't see the problem on other 
machines.
3) He's reporting it at different times.
4) I'll try that next time he reports the issue, or I find it.

Thanks.
Sam


On 05/15/2014 06:05 PM, David Tomaschik wrote:
> On Wed, May 14, 2014 at 8:59 AM, Sam Davis <aracthabar at gmail.com 
> <mailto:aracthabar at gmail.com>> wrote:
>
>     Hello All,
>
>         I have to admit, I really don't know where to begin on this.
>     LDAP has never been my strong suit.  We use LDAP authentication
>     for most of our servers.  We have one user for whom the client
>     machines seem to forget about.  In order to restore his account's
>     functionality, I have to stop and then start nslcd.  Sometimes the
>     client machines do not even realize his account exists, sometimes
>     it knows the account exists, but doesn't assign the correct group
>     memberships.  Other accounts are not impacted by this.  Does
>     anyone have any idea where to even begin looking into an issue
>     like this?
>
>
> I suspect I might know a thing or two about the LDAP system in question...
>
> To confirm:
> 1) Only 1 user is affected?
> 2) They are affected on multiple machines?  Is it all machines?
> 3) Does it happen at the same time across all machines?
> 4) When it occurs on a machine, what does "getent passwd <username>" 
> return?  A password entry, an error, or nothing?  Also might want to 
> try "getent passwd <uid>" to see if the behavior differs.
>
>     Sam
>     _______________________________________________
>     Ale mailing list
>     Ale at ale.org <mailto:Ale at ale.org>
>     http://mail.ale.org/mailman/listinfo/ale
>     See JOBS, ANNOUNCE and SCHOOLS lists at
>     http://mail.ale.org/mailman/listinfo
>
>
>
>
> -- 
> David Tomaschik
> OpenPGP: 0x5DEA789B
> http://systemoverlord.com
> david at systemoverlord.com <mailto:david at systemoverlord.com>
>
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20140516/e0fcba16/attachment.html>


More information about the Ale mailing list