Hi I used Yast LDAP Client to setup a LDAP connection The server is Samba 4 to which I have added rfc2307 attributes. (Have ldif, Will travel. If it would help.) The user can get Kerberos tickets and logon from a windows 7 client, but not from openSUSE: Dec 28 17:41:56 hh3 gnomesu-pam-backend: pam_systemd(gnomesu-pam:session): Failed to create session: Invalid argument Dec 28 17:42:57 hh3 gnomesu-pam-backend: pam_systemd(gnomesu-pam:session): Failed to create session: Invalid argument Dec 28 17:43:44 hh3 su: nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:04 hh3 polkitd(authority=local): nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:04 hh3 polkitd(authority=local): nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:04 hh3 polkitd(authority=local): nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:07 hh3 login[1114]: nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:07 hh3 login[1114]: nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:07 hh3 login[1114]: gkr-pam: error looking up user information Dec 28 17:49:07 hh3 login[1114]: nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:12 hh3 login[1114]: pam_ldap: ldap_search_s Operations error Dec 28 17:49:12 hh3 login[1114]: nss_ldap: could not search LDAP server - Server is unavailable Dec 28 17:49:12 hh3 login[1114]: FAILED LOGIN SESSION FROM /dev/tty1 FOR UNKNOWN, User not known to the underlying authentication module Dec 28 17:49:16 hh3 systemd[1]: getty@tty1.service holdoff time over, scheduling restart. /etc/ldap.conf base DC=hh3,DC=site bind_policy soft pam_lookup_policy yes pam_password crypt nss_initgroups_ignoreusers root,ldap nss_schema rfc2307bis nss_map_attribute uniqueMember member ssl no uri ldap://192.168.1.3 ldap_version 3 pam_filter objectClass=posixAccount tls_checkpeer no etc/nsswitch.conf passwd: compat group: files ldap hosts: files mdns4_minimal [NOTFOUND=return] dns networks: files dns services: files ldap protocols: files rpc: files ethers: files netmasks: files netgroup: files ldap publickey: files bootparams: files automount: files nis aliases: files ldap passwd_compat: ldap Anything obviously wrong? Thanks L x -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org