Thanks Jakub. That's what I thought, but I checked the ldapsearch and
retreiving seems to work:
[root@test-machine ~]# ldapsearch -H
ldaps://ldap01.something.net -x -W
-D 'cn=Manager,dc=something,dc=net' -b dc=something,dc=net
"(&(objectclass=posixAccount)(cn=testone))"
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <dc=something,dc=net> with scope subtree
# filter: (&(objectclass=posixAccount)(cn=testone))
# requesting: ALL
#
# testone, Employees, People,
something.net
dn: cn=testone,ou=Employees,ou=People,dc=something,dc=net
uidNumber: 1000
loginShell: /bin/sh
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
gidNumber: 1500
userPassword:: *********
givenName: test
homeDirectory: /home/users/testone
sn: one
uid: testone
cn: testone
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
------ Original Message ------
From: "Jakub Hrozek" <jhrozek(a)redhat.com>
To: sssd-devel(a)lists.fedorahosted.org
Sent: 8/4/2014 8:03:15 AM
Subject: Re: [SSSD] Trying to ssh with sssd/pam configuration
On Thu, Jul 31, 2014 at 07:26:14PM +0000, Sterling Sahaydak wrote:
There is a different problem now:
> (Thu Jul 31 15:09:40 2014) [sssd[be[LDAP]]] [be_get_account_info]
>(0x0100):
> Got request for [4097][1][name=testone]
> (Thu Jul 31 15:09:40 2014) [sssd[be[LDAP]]]
>[sdap_search_user_next_base]
> (0x0400): Searching for users with base [dc=something,dc=net]
> (Thu Jul 31 15:09:40 2014) [sssd[be[LDAP]]]
>[sdap_get_generic_ext_step]
> (0x0400): calling ldap_search_ext with
> [(&(uid=testone)(objectclass=posixAccount))][dc=something,dc=net].
This query didn't find anything. It's not easy for me to tell what's
wrong since the output is obfuscated. Can you first make sure with
ldapsearch that the configured search bases are what you'd expect and
there are no ACI issues?
_______________________________________________
sssd-devel mailing list
sssd-devel(a)lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-devel