libgcrypt

Bug #423252
Comment #18

Comment 18 for bug 423252

Revision history for this message

Greg (g6) wrote on 2009-11-09: Re: NSS using LDAP on Karmic (alpha 4) breaks 'su' and 'sudo'

#18

Bug still present as of today.

Changing /etc/slapd on the server from:

SLAPD_SERVICES="ldaps:///"

to:

SLAPD_SERVICES="ldap:/// ldaps:///"

and /etc/ldap.conf on the clients from:

uri ldaps://server.my.lan/
ssl on

to:

uri ldap://server.my.lan/
ssl off

'fixed' the problem for me, where 'fixed' means it is no longer authenticating over ssl and validating the server certificate. Not happy.

Is anyone looking at this?

nsswitch included below

greg@blah:$ cat /etc/nsswitch.conf
# /etc/nsswitch.conf
#
# Example configuration of GNU Name Service Switch functionality.
# If you have the `glibc-doc-reference' and `info' packages installed, try:
# `info libc "Name Service Switch"' for information about this file.

# pre_auth-client-config # passwd: compat
passwd: files ldap
# pre_auth-client-config # group: compat
group: files ldap
# pre_auth-client-config # shadow: compat
shadow: files ldap

hosts: files dns
networks: files

protocols: db files
services: db files
ethers: db files
rpc: db files

# pre_auth-client-config # netgroup: nis
netgroup: nis