[Bug 775743] LDAP user authentification without ssl seized to work on upgrade from 12.1 to 12.2

https://bugzilla.novell.com/show_bug.cgi?id=775743 https://bugzilla.novell.com/show_bug.cgi?id=775743#c5 Boris Neubert changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW InfoProvider|omega@online.de | --- Comment #5 from Boris Neubert 2012-08-15 19:01:48 UTC --- (In reply to comment #2)

Please attach /etc/nsswitch.conf and /etc/openldap/ldap.conf. /var/log/message from a failed getent passwd might also help.

I configured User and Group Management to use LDAP in Yast2. This is the corresponding part of /var/log/messages: Aug 15 20:43:51 sauron sssd: Could not open file [/var/log/sssd/sssd.log]. Error: [2][No such file or directory] Aug 15 20:43:51 sauron systemd[1]: sssd.service: control process exited, code=exited status=7 Aug 15 20:43:51 sauron systemd[1]: Unit sssd.service entered failed state. sauron:~ # systemctl status sssd.service sssd.service - System Security Services Daemon Loaded: loaded (/lib/systemd/system/sssd.service; enabled) Active: failed (Result: exit-code) since Wed, 15 Aug 2012 20:43:51 +0200; 19s ago Process: 8214 ExecStart=/usr/sbin/sssd -D -f (code=exited, status=7) CGroup: name=systemd:/system/sssd.service I manually created the missing /var/log/sssd and I manually turned off again ssl (ssl no) in /etc/ldap.conf (IMHO the latter should be made configurable as in the Yast2 LDAP Browser). I then ran /etc/init.d/sssd restart and got: Aug 15 20:45:02 sauron sssd: nscd socket was detected. Nscd caching capabilities may conflict with SSSD for users and groups. It is recommended not to run nscd in parallel with SSSD, unless nscd is configured not to cache the passwd, group and netgroup nsswitch maps. Aug 15 20:45:02 sauron sssd: Starting up Aug 15 20:45:02 sauron sssd[be[default]]: Starting up Aug 15 20:45:03 sauron sssd[nss]: Starting up Aug 15 20:45:03 sauron sssd[pam]: Starting up Running getent passwd and getent group reads backs the contents of /etc/passwd and /etc/group without the additional accounts on the LDAP server. I played around with turning nscd off and sssd on and vice versa but getent passwd never showed me the additional accounts on the LDAP server. Kind regards, Boris -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.