LDAP server broken after upgrade
Lonni J Friedman
netllama at gmail.com
Sat Aug 9 19:00:04 PDT 2008
On Sat, Aug 9, 2008 at 5:58 PM, Bill Campbell <linux-sxs at celestial.com> wrote:
> On Sat, Aug 09, 2008, Lonni J Friedman wrote:
>>I've just upgraded a server which provides NFS & OpenLDAP
>>authentication from Fedora 7 to Fedora9. The upgrade of the OS went
>>smoothly, however LDAP appears to be semi-broken.
>>
>>While I can authenticate any user, if I attempt to login as that user, I see:
>>$ su - lfriedman
>>id: cannot find name for user ID 3215
>>id: cannot find name for group ID 3215
>>id: cannot find name for user ID 3215
>>[I have no name!@spare ~]$
>>
>>All of this worked fine before the upgrade, so I'm kinda lost &
>>confused on what could be wrong now. Any LDAP experts have any
>>suggestions?
>
> I would check the /etc/ldap.conf and /etc/*ldap*/ldap.conf files to see if
> they were changed during the upgrade (look for ldap.rpmsave files for the
> old copies). Check also for an /etc/ldap.secret files which should have
> 600 perms. Do similar checks on /etc/openldap/slapd.conf.
I should have mentioned that I checked that first. Everything is
world readable.
>
> Check the /etc/nsswitch.conf to see what the passwd and group entries are
> (SuSE likes these as ``compat'', other systems may say ``ldap files'' or
> some such.
Wouldn't that only be for the client systems, and not the server? The
clients have been touched. Anyway, they already have "files ldap".
>
> Compare these files with your backups to see what has changed.
Unfortunately, other than the version of the LDAP server, nothing else
has changed. This is driving me mad.
More information about the Linux-users
mailing list