Do you have "files" before "ldap" in nsswitch.conf? Also, you might try this (for when LDAP is not available)
bind_policy soft nss_reconnect_tries 4 # number of times to double the sleep time nss_reconnect_sleeptime 1 # initial sleep value nss_reconnect_maxsleeptime 16 # max sleep value to cap at nss_reconnect_maxconntries 2 # how many tries before sleeping # This leads to a delay of 15 seconds (1+2+4+8=15) in your /etc/ldap.conf... Kevin -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jos Vos Sent: Monday, October 22, 2007 2:36 PM To: Red Hat Enterprise Linux 5 (Tikanga) discussion mailing-list Subject: Re: [rhelv5-list] Local user authentication without LDAP serverpossible? On Mon, Oct 22, 2007 at 11:11:34PM +0300, Janne Blomqvist wrote: > Try putting into /etc/ldap.conf something like > > # Search timelimit > timelimit 6 > > # Bind/connect timelimit > bind_timelimit 3 > > # Reconnect policy: hard (default) will retry connecting to > # the software with exponential backoff, soft will fail > # immediately. > bind_policy soft OK, thanks, that seems to work better. But ideally I'd like to let it not use LDAP at all when the user is known locally. That is what I would expect when "enablelocalauthorize" is set. -- -- Jos Vos <[EMAIL PROTECTED]> -- X/OS Experts in Open Systems BV | Phone: +31 20 6938364 -- Amsterdam, The Netherlands | Fax: +31 20 6948204 _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
