Hi,<br><br>Thanks for your suggestion<br><br>Stripping our config back as you suggested showed that we could get an unsecured connection to the server but that any time we tried using a secure connection no result would be returned.<br>
<br>We had specified tls_cacertdir and thought that the system would find the required cert. But it turns out that we need to specify tls_cacertfile and point it at the correct cert.<br><br><div class="gmail_quote">Have a nice day :)<br>
<br>On Wed, Jun 22, 2011 at 7:35 PM, Angel Bosch Mora <span dir="ltr"><<a href="mailto:angbosch@conselldemallorca.net" target="_blank">angbosch@conselldemallorca.net</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
<br>
----- Missatge original -----<br>
<div>> Hi,<br>
><br>
> Can anyone point me to some good documentation that shows how to get<br>
> Ubuntu 11.04 (GNU/Linux 2.6.38-8-server x86_64) working as a client<br>
> with 389 Directory Server?<br>
><br>
<br>
<br>
</div>you need getent passwd to return results before getting into pam.<br>
<br>
you can start with a very simple /etc/ldap.conf configuration:<br>
<br>
<br>
base dc=waikato,dc=ac,dc=nz<br>
<div> uri ldap://<a href="http://inf2.cms.waikato.ac.nz/" target="_blank">inf2.cms.waikato.ac.nz/</a><br>
</div> ldap_version 3<br>
pam_password md5<br>
<br>
<br>
try to stay as high on the tree as you can and be sure you configure /etc/nsswitch.conf with ldap.<br>
<br>
<br>
does that give any result?<br>
<br>
<br>
<br>
abosch<br>
<font color="#888888"><br>
<br>
--<br>
389 users mailing list<br>
<a href="mailto:389-users@lists.fedoraproject.org" target="_blank">389-users@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
</font></blockquote></div><br>