I have user account on LDAP. Without NSCD running, user can authenticate fine. When I start NSCD, user can't authenticate and no user information can be found. Does the NSCD break on FC3? I have also disable SELinux but no luck.
thanks
Barrow
solved my problem.. something to do with selinux. I am ok now.
Barrow H Kwan bhkwan@thoughtworks.com Sent by: fedora-list-bounces@redhat.com 12/02/2004 09:50 PM Please respond to For users of Fedora Core releases fedora-list@redhat.com
To fedora-list@redhat.com cc
Subject nscd is broken on FC3 ?
I have user account on LDAP. Without NSCD running, user can authenticate fine. When I start NSCD, user can't authenticate and no user information can be found. Does the NSCD break on FC3? I have also disable SELinux but no luck.
thanks
Barrow-- fedora-list mailing list fedora-list@redhat.com To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
Barrow H Kwan wrote:
solved my problem.. something to do with selinux. I am ok now.
How did you fix this ?
I thought you had SELinux disabled.
I keep getting : kernel: audit(1102155925.780:0): avc: denied { execute } for pid=9274 path=/lib/libselinux.so.1 dev=hda2 ino=342725 scontext=user_u:system_r:nscd_t tcontext=root:object_r:lib_t tclass=file
whenever I start nscd and would like to know how to get rid of it.(I could redo the policy but would prefer another soluton..)
Serge
your error message (avc: denied { execute }.... ) didn't look like mine. anyway, what I did is to run "setsebool nscd_disable_trans true" and if you update change your ldap.conf ( also if you use TLS and have cert. saved under /etc/openldap, ) you will need to run restorecon -v command on those changed files/directories.
Serge de Souza serge@cs.curtin.edu.au Sent by: fedora-list-bounces@redhat.com 12/04/2004 08:19 PM Please respond to For users of Fedora Core releases fedora-list@redhat.com
To For users of Fedora Core releases fedora-list@redhat.com cc
Subject Re: nscd is broken on FC3 ?
Barrow H Kwan wrote:
solved my problem.. something to do with selinux. I am ok now.
How did you fix this ?
I thought you had SELinux disabled.
I keep getting : kernel: audit(1102155925.780:0): avc: denied { execute } for pid=9274 path=/lib/libselinux.so.1 dev=hda2 ino=342725 scontext=user_u:system_r:nscd_t tcontext=root:object_r:lib_t tclass=file
whenever I start nscd and would like to know how to get rid of it.(I could redo the policy but would prefer another soluton..)
Serge
-
Barrow H Kwan -
Serge de Souza