LDAP server broken after upgrade
Bill Campbell
linux-sxs at celestial.com
Sat Aug 9 17:58:28 PDT 2008
On Sat, Aug 09, 2008, Lonni J Friedman wrote:
>I've just upgraded a server which provides NFS & OpenLDAP
>authentication from Fedora 7 to Fedora9. The upgrade of the OS went
>smoothly, however LDAP appears to be semi-broken.
>
>While I can authenticate any user, if I attempt to login as that user, I see:
>$ su - lfriedman
>id: cannot find name for user ID 3215
>id: cannot find name for group ID 3215
>id: cannot find name for user ID 3215
>[I have no name!@spare ~]$
>
>All of this worked fine before the upgrade, so I'm kinda lost &
>confused on what could be wrong now. Any LDAP experts have any
>suggestions?
I would check the /etc/ldap.conf and /etc/*ldap*/ldap.conf files to see if
they were changed during the upgrade (look for ldap.rpmsave files for the
old copies). Check also for an /etc/ldap.secret files which should have
600 perms. Do similar checks on /etc/openldap/slapd.conf.
Check the /etc/nsswitch.conf to see what the passwd and group entries are
(SuSE likes these as ``compat'', other systems may say ``ldap files'' or
some such.
Compare these files with your backups to see what has changed.
Bill
--
INTERNET: bill at celestial.com Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/ PO Box 820; 6641 E. Mercer Way
Voice: (206) 236-1676 Mercer Island, WA 98040-0820
Fax: (206) 232-9186
Your true dull minds are generally preferred for public employ...
-- Washington Irving
More information about the Linux-users
mailing list