https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c1 --- Comment #1 from Joerg Rohrer 2013-03-13 20:44:59 UTC --- Mar 13 18:12:13 alpha.joergi.ch saslauthd[1460]: pam_ldap: missing "host" in file "/etc/ldap.conf" Mar 13 18:12:13 alpha.joergi.ch saslauthd[1460]: DEBUG: auth_pam: pam_authenticate failed: Error in service module Mar 13 18:12:13 alpha.joergi.ch saslauthd[1460]: do_auth : auth failure: [user=joerg] [service=imap] [realm=] [mech=pam] [reason=PAM auth error] Mar 13 18:13:13 alpha.joergi.ch saslauthd[1459]: nss_ldap: could not determine LDAP server from ldap.conf or DNS Mar 13 18:13:13 alpha.joergi.ch saslauthd[1459]: gkr-pam: error looking up user information Mar 13 18:13:13 alpha.joergi.ch saslauthd[1459]: nss_ldap: could not determine LDAP server from ldap.conf or DNS Mar 13 18:13:13 alpha.joergi.ch saslauthd[1459]: pam_ldap: missing "host" in file "/etc/ldap.conf" -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c2 Ralf Haferkamp changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO InfoProvider| |joerg.rohrer@upc-cablecom.c | |h --- Comment #2 from Ralf Haferkamp 2013-03-14 09:12:14 CET --- Could you please paste the output of rpm -qf /etc/ldap.conf? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c4 --- Comment #4 from Yang Lifu 2013-03-14 19:26:12 UTC --- Retrieving: pam_ldap-32bit-186-4.1.1.x86_64.rpm ..........................[done] Digest verification failed for pam_ldap-32bit-186-4.1.1.x86_64.rpm. Expected 9553409e88e84f568bf624fbd071c5e61732c1df6a10c3950ee370655b6b564d, found 5f304752ec4f997bcbff6018f0ecaea5280e54166e3e3f5a15a1aaae87931f82. Continue? [yes/no] (no): no -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c6 --- Comment #6 from Ralf Haferkamp 2013-03-15 11:11:53 CET --- (In reply to comment #4)

Retrieving: pam_ldap-32bit-186-4.1.1.x86_64.rpm ..........................[done] Digest verification failed for pam_ldap-32bit-186-4.1.1.x86_64.rpm. Expected 9553409e88e84f568bf624fbd071c5e61732c1df6a10c3950ee370655b6b564d, found 5f304752ec4f997bcbff6018f0ecaea5280e54166e3e3f5a15a1aaae87931f82. Continue? [yes/no] (no): no

I am not sure what you are trying to tell me with that :). But this seems to be completely unrelated to this bug. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c8 Ralf Haferkamp changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO InfoProvider| |maintenance@opensuse.org --- Comment #8 from Ralf Haferkamp 2013-03-15 11:38:13 CET --- Submitted fix to Factory: https://build.opensuse.org/request/show/159529 @maintenance: I guess we should issue an update for 12.3 for this (older versions are not affected) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c10 --- Comment #10 from Ralf Haferkamp 2013-03-15 11:41:22 CET --- Actually nss_ldap is probably better, because it is pretty easy to use nss_ldap without pam_ldap (e.g. by using pam_krb5 instead). But the other way around doesn't make much sense. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c12 --- Comment #12 from Bernhard Wiedemann 2013-03-15 12:00:07 CET --- This is an autogenerated message for OBS integration: This bug (809245) was mentioned in https://build.opensuse.org/request/show/159530 Factory / nss_ldap -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

Hmm. Even if authenticate to a local installed openldap? So, i can get rid of pam_ldap? and use nss_ldap. No. I guess you got me wrong. What I wanted to say is that it is perfectly valid and makes sense in some scenarios (not everywhere) to setup nss_ldap with using pam_ldap. Hence it makes sense to put the ldap.conf file into the nss_ldap package. In most cases people will still have both, nss_ldap and

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c14 --- Comment #14 from Ralf Haferkamp 2013-03-15 12:16:04 CET --- (In reply to comment #11) pam_ldap, installed. (Or better: use sssd instead, which is our default of LDAP based users since some time. But we're getting off topic here).

What will be used if you do a complete yast configuration? For resolving and authenticating LDAP based users? sssd nowadays :). Support to setup nss_ldap and pam_ldap has been dropped from YaST in 12.2.

-- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c16 --- Comment #16 from Joerg Rohrer 2013-03-15 11:37:30 UTC --- I see, sorry for my ignorance. I'm really not aware of things in the background going on, such as package dependencies. I just found the ldap.conf file also in nss_ldap spec file and its owned by nss_ldap. But this would go to far if you have to explain how all those thing play together:). I'm glad (maybe others to) that you fixed the problem. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.

https://bugzilla.novell.com/show_bug.cgi?id=809245 https://bugzilla.novell.com/show_bug.cgi?id=809245#c18 Ralf Haferkamp changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED --- Comment #18 from Ralf Haferkamp 2013-03-15 13:56:30 CET --- Done: https://build.opensuse.org/request/show/159539 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.