Andrew
是福不是祸,是祸躲不过。
From iPod Touch
On 2011-12-28, at 9:11 AM, 杨峰 <[email protected]> wrote:
> It's a strange problem, I settle down LDAP setting and can get correct
> ldapsearch result at the mgmt node, but when I use "su" to the user, the
> system prompt "the user is not existed".
>
> It seems the LDAP service is running and the user authentication goes through
> /etc/passwd still. How to move the user authentication to LDAP only?
>
> I had changed /etc/nsswitch.conf to use ldap also.
>
> [root@xcat user]# ldapsearch -x -v -D "cn=root,dc=isilon,dc=cn" -W -b
> "ou=People,dc=isilon,dc=cn" "uid=demo"
> ldap_initialize( <DEFAULT> )
> Enter LDAP Password:
> filter: uid=demo
> requesting: All userApplication attributes
> # extended LDIF
> #
> # LDAPv3
> # base <ou=People,dc=isilon,dc=cn> with scope subtree
> # filter: uid=demo
> # requesting: ALL
> #
>
> # demo, People, isilon.cn
> dn: uid=demo,ou=People,dc=isilon,dc=cn
> uid: demo
> cn: demo
> sn: demo
> mail: [email protected]
> objectClass: person
> objectClass: organizationalPerson
> objectClass: inetOrgPerson
> objectClass: posixAccount
> objectClass: top
> objectClass: shadowAccount
> userPassword:: e2NyeXB0fSQ2JHkuMjUwS3hlJE9VZ3BidXJDdlg0UFk2NVFSSXBKNjhtNnpxYVp
> OVHdZYnBpZkdJVUJuQk1ZZnlVdmtEMHNwMTZLUmtaQmhoT0xrQ1NZdEhUU2NEUDRhTmhGUnJNSWIv
> shadowLastChange: 15334
> shadowMax: 99999
> shadowWarning: 7
> loginShell: /bin/bash
> uidNumber: 501
> gidNumber: 500
> homeDirectory: /ifs/home/demo
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 2
> # numEntries: 1
>
> [root@xcat user]# su - demo
> su: user demo is not existed
>
> ------------------------------------------------------------------------------
> Write once. Port to many.
> Get the SDK and tools to simplify cross-platform app development. Create
> new or port existing apps to sell to consumers worldwide. Explore the
> Intel AppUpSM program developer opportunity. appdeveloper.intel.com/join
> http://p.sf.net/sfu/intel-appdev
> _______________________________________________
> xCAT-user mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/xcat-user
------------------------------------------------------------------------------
Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex
infrastructure or vast IT resources to deliver seamless, secure access to
virtual desktops. With this all-in-one solution, easily deploy virtual
desktops for less than the cost of PCs and save 60% on VDI infrastructure
costs. Try it free! http://p.sf.net/sfu/Citrix-VDIinabox
_______________________________________________
xCAT-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/xcat-user
