[389-users] Migrating to LDAP authentication
patrick.morris at hp.com
patrick.morris at hp.com
Fri Feb 12 11:12:04 UTC 2010
Hi Sean!
On Fri, 12 Feb 2010, Sean Carolan wrote:
> > I have UsePAM turned on, and getent group shows me in the "operations"
> > group. I wonder why sshd is not seeing that I'm in the operations
> > group?
>
> Ok, never mind. On this particular server there was one entry in
> /etc/group with my username in it, that was somehow interfering. Once
> I removed my username from there, it's showing me in the operations
> group and seems to work now. How would you allow root logins to
> proceed if there is no "root" user in LDAP?
Set up a local root user on every box. I highly recommend not relying
on LDAP for that, or you're a bit screwed if, for example, your network
cable goes bad.
More information about the 389-users
mailing list