LinuxQuestions.org - Cant authenticate to LDAP domain with Redhat9

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Cant authenticate to LDAP domain with Redhat9 (https://www.linuxquestions.org/questions/linux-networking-3/cant-authenticate-to-ldap-domain-with-redhat9-199961/)

Cant authenticate to LDAP domain with Redhat9

Hi,

I'm new to ldap and fairly new to linux as well so bare with me..... :)

I've recently installed Red Hat 9 over Gentoo due to some commerical software support. My problem is that I can not get Red Hat to authenticate to the ldap domain.
Here is the current ldap software I have installed:

[root@hostname root]# rpm -qa | grep ldap
openldap-2.0.27-8
openldap-clients-2.0.27-8
nss_ldap-202-5
openldap-devel-2.0.27-8
openldap-servers-2.0.27-8
php-ldap-4.2.2-17.2

Here is current openssl:
[root@hostname root]# rpm -qa | grep openssl
openssl-0.9.7a-20.2
openssl-perl-0.9.7a-20.2
openssl096b-0.9.6b-15
openssl-devel-0.9.7a-20.2
openssl096-0.9.6-25.9

I also have autofs installed and running.
I have copied the exact files for /etc/ldap.conf, /etc/nsswitch.conf, /etc/pam.d/system_auth, and /etc/ssl/certs/eeca.pem, and /etc/autofs/auto.master
which work on other linux computers (Mainly Gentoo).
I also copied ldap.conf into /etc/openldap/ldap.conf and copied /etc/autofs/auto.master to /etc/auto.master.

So my config files must be correct if they work on other computers...
Leaving me to believe that must be extra config files on Redhat that I must setup.:scratch:
I took out the hostname and domain names in the following test.

Test:
[root@"hostname" root]# ssh -ltestuser "hostname"
testuser@"hostname's" password:
Permission denied, please try again.

Log file:
sshd(pam_unix)[14275]: check pass; user unknown
sshd(pam_unix)[14275]: authentication failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost="hostname"."**"."***".edu
sshd(pam_unix)[14275]: check pass; user unknown
sshd(pam_unix)[14275]: 1 more authentication failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost="hostname"."**"."***".edu

Any Ideas on how to resolve this issue? Thanks.

Either I always pick the hard questions to ask or there so easy no one bothers to answer....

Anyways I have been working on this problem for days and any info will be most appreciated.

Also here is some more info on the problem.
When I run ldapsearch i get this...

[root@blochEE root]# ldapsearch -x -b "dc=ee,dc=ucr,dc=edu" uid=grad-adm
version: 2

#
# filter: uid=grad-adm
# requesting: ALL
#

# grad-adm, People, ee, ucr, edu
dn: uid=grad-adm,ou=People,dc=ee,dc=ucr,dc=edu
uid: grad-adm
cn: Graduate Affairs
sn: Affairs
mail: grad-adm@ee.ucr.edu
labeledURI: http://www.ee.ucr.edu/~grad-adm
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
loginShell: /bin/bash
uidNumber: 30501
gidNumber: 402
homeDirectory: /home/eemisc/grad-adm
gecos: Graduate Affairs

# search result
search: 2
result: 0 Success

# numResponses: 2
# numEntries: 1
[root@blochEE root]#

And when I get this running getent:
[root@blochEE root]# getent passwd grad-adm
grad-adm:x:30501:402:Graduate Affairs:/home/eemisc/grad-adm:/bin/bash
[root@blochEE root]#

From my understandings it looks like the client can communicate ok with the server, so I am at a loss as to why I can not login using users on the ldap server?
:confused:

If you need any more info. please let me know and I'll be happy to provide it.
Any responses will be most appreciated.
Thank you.

--
steve