On 09/05/2013 10:47 AM, Alexander Bokovoy wrote:
> On Thu, 05 Sep 2013, cbul...@gmail.com wrote:
>> I have some services that need to work with a NIS server and I would
>> like to use slapi-nis plugin in order to use just FreeIPA as our
>> Directory Server.
>> The users were imported from a openldap server and the password
>> encryption is MD5.
>> I installed slapi-nis in the server and configure a NIS client(Red Hat
>> 5.9) with FreeIPA server (Red Hat 6.3, FreeIPA: 3.0.0-26).
>> I'm able to get info of the users from NIS client (getent passwd
>> user_id) but when the user try to log in to the NIS client the
>> authentication fails.
>> Slapi-nis was installed and configured using the default options.
>> Any clue about this problem or How can I debug this?
> From what you are describing, it looks like what I have fixed recently
> in slapi-nis as side-effect of adding support for trusted domains.
> Not sure if Nalin has backported this fix to older versions (slapi-nis
> 0.48 is in Fedora 19 at this point) but filing a bug against RHEL 6.3
> would help in promoting the fix to stable packages.
Well... I should say that originally slapi-nis did not support binding.
And it was not intended to support binding.
We had to add binding to slapi-nis for other reasons not related to the
use case at hand.
I doubt that the change would be backported.
Is there any other authentication method that you can use from those boxes?
pam_krb5 or pam_ldap or may be something along those lines?
What OS/version they are running?
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
Looking to carve out IT costs?
Freeipa-users mailing list