Latest LQ Deal: Linux Power User Bundle
Go Back > Forums > Linux Forums > Linux - Server
User Name
Linux - Server This forum is for the discussion of Linux Software used in a server related context.


  Search this Thread
Old 12-07-2006, 11:19 PM   #1
LQ Newbie
Registered: Dec 2006
Posts: 9

Rep: Reputation: 0
Chown fails in client login for user defined in ldap server

Hi All,

I am trying to build a system authentication system using openldap.
What I have done:?

1. Configured Ldap Server .
2. Added /etc/passwd data to ldap. ( of the server machine)
3. Ldap is running.
4. Configured client, nsswitch.conf and pam etc.
5. On server I have two users userA and UserB
6. On client I have userA with different password than the UserA on server.
7. I don't have userB in client.
8. On client machine /home/userA and /home/UserB are created.
9. /home/userA is owned by userA
10./home/UserB is owned by root.

Current status:

1. I am able to login as userA with both passwords 1 in server and other in client.

2. I am able to login to client with UserB as failsafe mode.


I want to login in normal mode for UserB. For that I need ownership of /home/UserB in the name of UserB.

I am not able to do it with chown command.

Its complaining UserB not found.

I have tried following step already:

# cp /etc/skel/.* /home/UserB/
cp: omitting directory `/etc/skel/.'
cp: omitting directory `/etc/skel/..'
cp: omitting directory `/etc/skel/.kde'

This does not solve my problem.
Can any one please tell me any document how to build a "system authentication framework". The framework is desired to have all users and password in ldap server and any user can login to any machine using ldap user id( i.e. stored in ldap server) and passwd .

If any one has done it successfuly please help me.
My efforts are partially successful only.
I am at Red Hat Linux 9 ( shrike release)

Thanks & Regards
Old 12-14-2006, 10:15 PM   #2
Registered: Aug 2003
Location: Indiana
Distribution: fc6 sles9 & 10 kubuntu ubuntu-server
Posts: 240
Blog Entries: 2

Rep: Reputation: 30
Without know anymore than this about your setup:
If you issue the command:
getent passwd
on the client machine does it show user a and b? If you can't see both users then the client machine is not looking at the ldap server for authentication. If not take a look at your nsswitch.conf and /etc/ldap.conf files on the client. The ldap.conf file should contain information similar to the following:
URI     ldap:// 
base    dc=yourdomain,dc=org
nss_map_attribute       uniqueMember uniquemember
ldap_version    3
ssl     off
bindpw yourpasswordhere
binddn cn=youradministratoruser,dc=yourdomain,dc=org
timelimit = 50
#pam_password   crypt
pam_password    exop
pam_filter      objectclass=posixAccount
nss_base_passwd ou=People,dc=yourdomain,dc=org?one
nss_base_shadow ou=People,dc=yourdomain,dc=org?one
nss_base_group  ou=Groups,dc=yourdomain,dc=org?one
and the nsswitch.conf
passwd: files ldap winbind
shadow: files ldap winbind
group:  files ldap winbind
Note that both of these are from a samba+ldap domain but your should be very close to the same. If you make a change to the nsswitch.conf you will most like need to reboot for those changes to become effective. Any ldap changes just restart the ldap service.

Old 12-19-2006, 11:26 PM   #3
LQ Newbie
Registered: Dec 2006
Posts: 9

Original Poster
Rep: Reputation: 0

Thanks a lot for reply.
getent passwd is showing local as well as ldap users.

Thanks & Regards


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LDAP server not starting as user LDAP klnasveschuk Fedora 1 02-15-2007 05:49 AM
samba client atenticate against LDAP server procfs Linux - Security 10 07-19-2006 03:45 AM
NIS prob: added user to server, but can't login to client BrianK Linux - General 3 10-06-2004 05:29 PM
LDAP trouble: login on server OK, remote fails nielchiano Linux - Networking 2 04-29-2004 07:47 AM
Refresh client user list at autentication client/server network. robertoneto123 Linux - Networking 0 11-11-2003 11:38 AM > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 11:43 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration