From owner-freebsd-questions@FreeBSD.ORG Sat Oct 31 07:10:11 2009 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 70E3D106566B for ; Sat, 31 Oct 2009 07:10:11 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) by mx1.freebsd.org (Postfix) with ESMTP id 654D58FC22 for ; Sat, 31 Oct 2009 07:10:10 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id A13F33A3839; Sat, 31 Oct 2009 14:10:06 +0700 (ICT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= references:subject:subject:in-reply-to:from:from:message-id:date :date:received:received:received; s=selector1; t=1256973006; x= 1258787406; bh=px6+b6ltw3eZTYwDU36mJkoYE1VLFBP0tiS8XqILNMw=; b=Z BJZTSuFPbs48kLGa82b/VCke/pNYCG4M4Ub3KDIDFRBnHf0PJn90WvpjuhTEvylV S4NoRkuTcem+bnTOL/+rnsZOLdQCrLxAuChVWW4Vit62zub94zezt4o088W3PoRH Q3IPELaFwWWR/PoZvsfH9RQgzG7lSK2/T0H3RVmg8g= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by localhost (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 7VSw-lgWJnzb; Sat, 31 Oct 2009 14:10:06 +0700 (ICT) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id C6CC83A382C; Sat, 31 Oct 2009 14:10:05 +0700 (ICT) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.14.3/8.14.3/Submit) id n9V7A59X009388; Sat, 31 Oct 2009 14:10:05 +0700 (ICT) (envelope-from on) Date: Sat, 31 Oct 2009 14:10:05 +0700 (ICT) Message-Id: <200910310710.n9V7A59X009388@banyan.cs.ait.ac.th> From: Olivier Nicole To: on@cs.ait.ac.th In-reply-to: <200910310649.n9V6nuX2009185@banyan.cs.ait.ac.th> (message from Olivier Nicole on Sat, 31 Oct 2009 13:49:56 +0700 (ICT)) References: <200910310649.n9V6nuX2009185@banyan.cs.ait.ac.th> Cc: questions@freebsd.org Subject: Re: Strange behaviour of nss_ldap in 7.2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 31 Oct 2009 07:10:11 -0000 Bad bad bad me. > I am using nss_ldap without problem on a machine with FreeBSD 6.4 > amd64. > > Now I wanted to make a similar configuration with a machine running > FreeBSD 7.2 i386, but I have a problem: > > - as root, getent passwd gives me the list of users in /etc/passwd and > in LDAP; > > - as user. getent passwd only gives me list of users in /etc/passwd. Sorry for the disturbance, it was a CA file that was not user readable. Shame on me. > > Example: > > samba<1001>: ls -l toto > -rw-r--r-- 1 1001 30 0 Oct 31 13:21 toto > samba<1001>: sudo ls -l toto > Password: > -rw-r--r-- 1 on staff 0 Oct 31 13:21 toto > > The group ID and user ID are not resolved. > > On the machine that is working: > > banyan47: ls -l toto > -rw-r--r-- 1 on csimstaff 0 Oct 31 13:46 toto > banyan48: sudo ls -l toto > Password: > -rw-r--r-- 1 on csimstaff 0 Oct 31 13:46 toto > > The user and grup ID are resolved. > > Note that I can authenticate against LDAP without problem (sudo with > pam_ldap works and ssh work). > > I have copied nss_ldap.conf and nsswitch.conf from the 6.4 to the 7.2 > machine (with needed name changing). > > Both LDAP servers are running almost the same thing, ACL are the same. > > I have tried to remove the ACL on LDAP server without success. > > I am stuck with a different behaviour between 6.4 and 7.2, any help > will be greatly appreciated as I need to solve that problm urgently. > > > TIA, > > Olivier