Shamika Joshi shamika.joshi@gmail.com writes:
Here it is...ldap.conf from both my client machines.
Thanks Shamika
On Thu, Apr 8, 2010 at 1:08 PM, Dieter Kluenter dieter@dkluenter.de wrote:
Shamika Joshi <shamika.joshi@gmail.com> writes: > Please find pam-ldap & nssswitch configuration from my Ubuntu10desktop client & Fed12desktop client. I guess > it looks fine. > Could you review & let me know if you find i've mis-configured or missed out on something? I am missing /etc/ldap.conf -Dieter -- Dieter Klünter | Systemberatung sip: +49.40.20932173 http://www.dpunkt.de/buecher/2104.html GPG Key ID:8EF7B6C6/etc/ldap.conf U910deskop
base dc=testlab,dc=com ldap_version 3 rootbinddn cn=admin,dc=testlab,dc=com bind_policy soft pam_password exop nss_initgroups_ignoreusers avahi,avahi-autoipd,backup,bin,couchdb,daemon,games,gdm,gnats,haldaemon,hplip,irc,kernoops,libuuid,list,lp,mail,man,messagebus,news,proxy,pulse,root,saned,speech-dispatcher,sshd,sync,sys,syslog,uucp,www-data
/etc/ldap.conf Fed12desktop
base dc=testlab,dc=com timelimit 120 bind_timelimit 120 bind_policy soft nss_initgroups_ignoreusers root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman,nscd,gdm,polkituser,rtkit,pulse uri ldap://172.17.0.200/ ssl no tls_cacertdir /etc/openldap/cacerts pam_password md5
I don't think this configuration will provide the data required. As support for name service switch is far beyond the scope of this mailing list you should probably ask on nsswitch related, or ubuntu related, mailing list on how to properly configure nsswitch in order to retrieve group information.
-Dieter