<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1561" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Hi List!</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Ldapsearch returns data from "Fedora-DS" but
"getent group/passwd" <FONT face="Times New Roman" size=3>and "id user"
commands can not get them. They just can get data from "/etc/passwd" and
"/etc/group".</FONT></FONT></DIV>
<DIV><FONT face=Arial size=2><FONT face="Times New Roman"
size=3></FONT></FONT> </DIV>
<DIV><FONT face=Arial size=2><FONT face="Times New Roman" size=3>What is
wrong?</FONT></FONT></DIV>
<DIV>Please, can someone help me? </DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>Agnaldo</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>P.S.: Some configuration files</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>#
<STRONG>/etc/pam.d/system-auth</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2>####################</FONT></DIV>
<DIV><FONT face=Arial size=2>#%PAM-1.0<BR># This file is auto-generated.<BR>#
User changes will be destroyed the next time authconfig is
run.<BR>auth
required
/lib/security/$ISA/pam_env.so<BR>auth
sufficient /lib/security/$ISA/pam_unix.so likeauth
nullok<BR>auth
sufficient /lib/security/$ISA/pam_ldap.so
use_first_pass<BR>auth
required
/lib/security/$ISA/pam_deny.so</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>account
required /lib/security/$ISA/pam_unix.so
broken_shadow<BR>account sufficient
/lib/security/$ISA/pam_succeed_if.so uid < 100
quiet<BR>account [default=bad success=ok
user_unknown=ignore]
/lib/security/$ISA/pam_ldap.so<BR>account
required
/lib/security/$ISA/pam_permit.so</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>password
requisite /lib/security/$ISA/pam_cracklib.so
retry=3<BR>password sufficient
/lib/security/$ISA/pam_unix.so nullok use_authtok md5
shadow<BR>password sufficient
/lib/security/$ISA/pam_ldap.so use_authtok<BR>password
required
/lib/security/$ISA/pam_deny.so</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>session
required
/lib/security/$ISA/pam_limits.so<BR>session
required
/lib/security/$ISA/pam_unix.so<BR>session
optional
/lib/security/$ISA/pam_ldap.so<BR></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>#
<STRONG>/etc/nsswitch.conf<BR></STRONG>#################</FONT></DIV>
<DIV><FONT face=Arial size=2>passwd: files
ldap<BR>shadow: files
ldap<BR>group: files ldap</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>hosts: files
dns</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>bootparams:
files<BR>ethers: files<BR>netmasks:
files<BR>networks: files<BR>protocols: files
ldap<BR>rpc:
files<BR>services: files ldap<BR>netgroup: files
ldap<BR>publickey: files<BR>automount: files
ldap<BR>aliases: files<BR><BR></FONT></DIV>
<DIV><FONT face=Arial size=2># <STRONG>ldap.conf</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2>#########</FONT></DIV>
<DIV><FONT face=Arial size=2>host 192.168.2.3</FONT></DIV>
<DIV><FONT face=Arial size=2>base dc=sei,dc=intranet</FONT></DIV>
<DIV><FONT face=Arial size=2>bindpw passwd</FONT></DIV>
<DIV><FONT face=Arial size=2>rootbinddn cn=Directory
Manager,dc=sei,dc=intranet<BR>timelimit 50<BR>pam_lookup_policy yes</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial
size=2>nss_base_passwd
ou=People,dc=sei,dc=intranet?one<BR>nss_base_shadow
ou=People,dc=sei,dc=intranet?one<BR>nss_base_group
ou=Groups,dc=sei,dc=intranet?one<BR>pam_password exop<BR>ssl
off<BR></FONT></DIV>
<DIV><FONT face=Arial size=2>
<DIV><FONT face=Arial size=2># <STRONG>/etc/pam.d/login</STRONG></FONT></DIV>
<DIV><FONT face=Arial size=2>################</FONT></DIV></FONT></DIV>
<DIV><FONT face=Arial
size=2>#%PAM-1.0<BR>auth
required
pam_securetty.so<BR>auth
required pam_stack.so
service=system-auth<BR>auth
required
pam_nologin.so<BR>#auth sufficient
/lib/security/pam_ldap.so use_first_pass<BR>#account
sufficient /lib/security/pam_ldap.so<BR>account
sufficient pam_stack.so service=system-auth<BR>password
required pam_stack.so service=system-auth<BR>#
pam_selinux.so close should be the first session rule<BR>#
session required pam_selinux.so
close<BR>session required pam_stack.so
service=system-auth<BR>session
required pam_loginuid.so<BR>session
optional pam_console.so<BR># pam_selinux.so open should
be the last session rule<BR># session required
pam_selinux.so open<BR></DIV></FONT>
<DIV><FONT face=Arial size=2>
<DIV><FONT face=Arial size=2></FONT> </DIV></DIV></FONT>
<DIV><FONT face=Arial size=2> </DIV></FONT>
<DIV><FONT face=Arial size=2>[root@netuno1 ~]# <STRONG>strings
/lib/libnss_ldap.so.2 | grep
conf<BR></STRONG>_nss_ldap_readconfig<BR>_nss_ldap_readconfigfromdns<BR>_nss_ldap_init_config<BR>sysconf<BR>-conf<BR>/etc/ldap.conf<BR>/etc/openldap/ldap.conf<BR>version
conflict in sasl_client_add_plugin for %s<BR>%.*s%c%s.conf<BR>auth-conf<BR>DB
environment not configured for transactions<BR>Database environment not
configured for encryption<BR>%s interface requires an environment configured for
the %s subsystem<BR>DB_ENV->set_lk_conflicts<BR>Environment not configured as
replication master or client<BR> an index not configured to support
duplicates<BR>Primary databases may not be configured with duplicates<BR>ssl
session id conflict<BR>confounded by authenticator.<BR>configuration file
routines<BR>id-it-confirmWaitTime<BR>id-cmc-confirmCertAcceptance<BR>no sign
function configured<BR>no verify function configured<BR>no config
database<BR>X509V3_EXT_conf<BR>no conf<BR>no conf or environment
variable<BR>conflicting engine
id<BR>v3_conf.c<BR>conf_lib.c<BR>conf_api.c<BR>conf_def.c<BR>/etc/krb5.conf:/etc/krb5.conf<BR>Can't
open/find Kerberos configuration file<BR>Improper format of Kerberos
configuration file<BR>No supported encryption types (config file
error?)<BR></DIV></FONT></BODY></HTML>