-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 magic wrote: > Hello all, > > I seem to be having an issue with subj package. > > Using the MDK Secure ldap auth document (as reference). With the > newest pam_ldap, password changes are not completed for ldap users. Not > sure exactally where the issue is, but pam_ldap-161-1.1mdk works (in > conjunction) with both nss_ldap-204-1.1mdk & 207-1mdk. >
Scott, please file a bug on this so we can track it. Please note that some issues are affected by certificate validation issues, I am currently running some cooker boxes without ssl in /etc/ldap.conf, and/or disabled cert validation. [Vince, the cert validation issue also affects the openldap packages on 9.1. I mentioned this before, and I have discovered that the problem I had attributed to TinyCA is a general problem with cert validation (in the case you don't use self-signed certs). I will file a seperate bug on openldap, but I would like your input on it)] > In cases where you have a system & ldap user (with same uid) the > system password is changed, when the ldap password should be changed > (not good)... Any ideas? Hmm, we don't have any local user accounts any more (everything is in LDAP besides emergency accounts on boxes which don't allow local root login). Please upload a copy of your /etc/pam.d/system-auth file to your bug report. Regards, Buchan - -- |--------------Another happy Mandrake Club member--------------| Buchan Milne Mechanical Engineer, Network Manager Cellphone * Work +27 82 472 2231 * +27 21 8828820x202 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/MouIrJK6UGDSBKcRAnmzAKDFhPiyQjmVr5KW5N1SEQvB3p+3YACeM2za MT5LIKDc0mYxxKeKZ/1JfKI= =Xikj -----END PGP SIGNATURE----- ****************************************************************** Please click on http://www.cae.co.za/disclaimer.htm to read our e-mail disclaimer or send an e-mail to [EMAIL PROTECTED] for a copy. ******************************************************************
