Home
TeamSite
PAM & LDAP problems
mmb
TS 7.3.1
Red Hat Enterprise Linux
We are bogged down with iwauthend reporting errors such as:
iwauthend: pam_ldap: ldap_set_option(LDAP_OPT_X_TLS_REQUIRE_CERT): Unknown error
iwauthend: pam_ldap: _set_ssl_default_options failed
iwauthend: pam_ldap: ldap_set_option(LDAP_OPT_X_TLS) Unknown error
We have followed the manual and created a teamsite service file under /etc/pam.d but still no luck
Has anyone manged to configure this?
Any help appreciated
thanks
Find more posts tagged with
Comments
nipper
1st, 7.3.1 is quite new. So you may be in uncharted waters if it behaves different from 7.2.1
I have done both PAM and LDAP on 7.X, and they seem to work well.
you have authenicate_by=pam
in iw.cfg ? What else under authentication ? You should not need user_databases.xml
In my implementation, we did not create the teamsite service file under pam.d
Can you log on the server using PAM through telnet/ssh ?
mmb
Hi
Thanks for the reply.
Yes its been a real drag getting through all the install and build on 7.3.1
iw.cfg options:
[authentication]
authenticate_by=pam, local
pam_service=teamsite
pam_do_acct_mgmt=no
we see the pam service acting as expected (yet failing to authenticate) in /var/log/secure
iwauthend: pam_unix(teamsite:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost= user=*******
I have raised a support case in the meantime...
interesting that you have not created a service file... so your iw.cfg just has
[authentication]
authenticate_by=pam
and no service definition?
And yes we can login via ssh to the server using the LDAP password, its just the application that is having problems.
thanks
mark
nipper
Actually our authentication is
pam_service=sudo
pam_do_acct_mgmt=no
so we are just using the sudo service.
