hi
i m trying to use sssd 1.2.2-19 on my fedora 13 machine and i have some
questions about enumeration.
Here is my sssd.conf ( ldap part )
[domain/default]
ldap_id_use_start_tls = False
ldap_tls_reqcert = never
cache_credentials = True
ldap_search_base = dc=int-evry,dc=fr
ldap_user_search_base = ou=People,dc=int-evry,dc=fr
ldap_group_search_base = ou=Group,ou=System,dc=int-evry,dc=fr
#ldap_group_search_base = ou=Groups,dc=int-evry,dc=fr
chpass_provider = none
id_provider = ldap
auth_provider = ldap
debug_level = 3
min_id = 1
ldap_uri = ldap://ldap2.int-evry.fr/ , ldap://ldap3.int-evry.fr/ ,
ldap://ldap1.int-evry.fr/
ldap_schema = rfc2307
access_provider = permit
ldap_default_bind_dn = cn=mcibind,ou=System,dc=int-evry,dc=fr
ldap_default_authtok_type = password
ldap_default_authtok = xxxxx
enumerate = True
create_homedir = True
tested is an account that have never logged on the computer.
when the network is out
i type
getent passwd | grep tested
tested:*:14501:145:RASSAR:/mci/mci/tested:/usr/local/bin/bash
the account tested is here
but i can't log with this account
here is the message on the secure log file
Aug 23 11:44:39 b008-07 login: pam_unix(login:auth): authentication
failure; logname=LOGIN uid=0 euid=0 tty=tty4 ruser= rhost= user=tested
Aug 23 11:44:39 b008-07 login: pam_sss(login:auth): authentication
failure; logname=LOGIN uid=0 euid=0 tty=tty4 ruser= rhost= user=tested
Aug 23 11:44:39 b008-07 login: pam_sss(login:auth): received for user
tested: 9 (Authentication service cannot retrieve authentication info)
Aug 23 11:44:40 b008-07 login: FAILED LOGIN 1 FROM (null) FOR tested,
Authentication failure
Does enumeration permit to store credentials for people that have never
logged in the machine?