Running "auth-client-config -p lac_ldap" gives error (2)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
auth-client-config (Ubuntu) |
Won't Fix
|
Undecided
|
Unassigned | ||
ldap-auth-client (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
In: Ubuntu intrepid 8.10 (auth-client-config 0.9)
The following error is displayed when running the "auth-client-
profiles as distributed.
-------
auth-client-config -a -p lac_ldap
Error in updating the file: 'pam_account' not found
--
Errors found. Aborting (no changes made)
-------
This appears to be because the file '/etc/auth-
This used to work on 8.04.
Work-around: Copy the previous profile file from ubuntu 8.04. (auth-client-config 0.6.1)
.. in addition.. (should i raise another bug on this?)
to get LDAP client authentication working properly I also had to edit
/etc/ldap.conf manually and set the following parameters:
nss_base_passwd
nss_base_shadow
nss_base_group
.. then it worked.
The missing lines are: ------- ------- ------- ----- password sufficient pam_ldap.so
-------
pam_auth=auth sufficient pam_ldap.so
auth required pam_unix.so nullok_secure use_first_pass
pam_account=account sufficient pam_ldap.so
account required pam_unix.so
pam_password=
password required pam_unix.so nullok obscure min=4 max=8 md5
pam_session=session required pam_unix.so
session required pam_mkhomedir.so skel=/etc/skel/
session optional pam_ldap.so
session optional pam_foreground.so