From owner-freebsd-questions@FreeBSD.ORG Thu May 15 09:00:46 2008 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 590751065679 for ; Thu, 15 May 2008 09:00:46 +0000 (UTC) (envelope-from naseef.ibrahim@gmail.com) Received: from wf-out-1314.google.com (wf-out-1314.google.com [209.85.200.173]) by mx1.freebsd.org (Postfix) with ESMTP id 2D1A38FC26 for ; Thu, 15 May 2008 09:00:46 +0000 (UTC) (envelope-from naseef.ibrahim@gmail.com) Received: by wf-out-1314.google.com with SMTP id 28so288719wfa.7 for ; Thu, 15 May 2008 02:00:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; bh=/SFvN0V2tGbJVXUQcFsfJtzOD6qEEiXuiQHBstU/6BM=; b=erdDVZgTnPym2ov8KcdNNx96YAnwb8n9UhtKWgOfSefJ1GTc5iaTn7aPRPW3If/VcqmoF52PK4pU36gsBxBwlibB6g359DRMRX3UN6sD5jMIjOykPzhmvzsM37qX28LFMWuRlppj84HaHL1xas8RRMiTn0HDWKtqBoVCp8bE+PQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:content-type:content-transfer-encoding; b=xWRNfIIgG8K8xopmBsBNvDOGKAv9BLfycxCxIVfBR2GPifZlqsi6lRU//X23CT4gNR0BoeAVRAsfSuF6QCkeLcH7fb4YXyJOs5rXX5ivcTBGF6sJzHbWzd4W4SOKD/xGRiykdlsUiK4TC07ptXKOJ+kAXEGaXWkUPQQg5mZEAus= Received: by 10.142.200.20 with SMTP id x20mr851268wff.145.1210840506697; Thu, 15 May 2008 01:35:06 -0700 (PDT) Received: from ?192.168.0.125? ( [220.253.115.206]) by mx.google.com with ESMTPS id 20sm5122840wfi.11.2008.05.15.01.35.04 (version=TLSv1/SSLv3 cipher=RC4-MD5); Thu, 15 May 2008 01:35:05 -0700 (PDT) Message-ID: <482BF5AF.9030508@gmail.com> Date: Thu, 15 May 2008 18:34:55 +1000 From: Nas Abdulla User-Agent: Thunderbird 2.0.0.14 (X11/20080502) MIME-Version: 1.0 To: questions@FreeBSD.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: Regarding client configs X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 May 2008 09:00:46 -0000 Hi, I followed the guide at http://www.cultdeadsheep.org/FreeBSD/docs/Quick_and_dirty_FreeBSD_5_x_and_nss_ldap_mini-HOWTO.html to the T, except that I didnot slappasswd my rootpw or any other password. The output of the finger command is root@rule40# finger nabdulla Login: nabdulla Name: TestUser Directory: /home/test Shell: /bin/csh Never logged in. No Mail. No Plan. root@rule40# id nabdulla uid=1000(nabdulla) gid=1000 groups=1000 the when I try to login root@rule40# ssh nabdulla@rule115.caia.swin.edu.au Password: Password: Password: Permission denied (publickey,keyboard-interactive). The following are the contents of nss_ldap.conf host rule115.caia.swin.edu.au uri ldap://rule115.caia.swin.edu.au ldap_version 3 binddn cn=admin,dc=rule115,dc=caia,dc=swin,dc=edu,dc=au bindpw secret port 389 pam_password clear nss_base_passwd ou=people,dc=rule115,dc=caia,dc=swin,dc=edu,dc=au?one nss_base_group ou=group,dc=rule115,dc=caia,dc=swin,dc=edu,dc=au?one In the pam.d/sshd ,I have added the following lines auth sufficient /usr/local/lib/pam_ldap.so no_warn try_first_pass auth required pam_unix.so no_warn try_first_pass password sufficient /usr/local/lib/pam_ldap.so no_warn try_first_pass password required pam_unix.so no_warn try_first_pass Why can't I login to the server if I can excecute id and finger with results? -------------------------------------------- FreeBSD rule40.caia.swin.edu.au 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18 UTC 2004 root@harlow.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386