On (25/08/16 18:09), [email protected] wrote: >Lukas, > >Below is a log excerpt from a failed authentication. It looks like sssd tries >to bind to the ldap server with the given username, which fails. I'll ask my >ldap admin, but I think the openldap server is set up to transfer shadow data >over tls without the need for a username/password to bind. I thought the bind >user/password was an AD thing. I'm sure I never needed a bind user when >authenticating to this server with nslcd. > I briefly looked into nss-pam-ldapd source code but I could not see exported function _nss_ldap_getspnam_r for freebsd. nss plugin from nslcd doesn't export shadow entries.
So are you sure that nslcd does not use simple bind for authenticaton? Is it possible that you used wrong password? LS _______________________________________________ sssd-users mailing list [email protected] https://lists.fedorahosted.org/admin/lists/[email protected]
