Hi!

I have set up a SLES 11-machine to be an LDAP-client.
Everything went fine installing it, and with the LDAP-browser
i can browse the whole LDAP-tree with users and attributes.
I have set up the LDAP-client to create new home directories
when a first-time user logs on.
However, when I try to log in with an LDAP-valid user name
I get the following error "User not known to underlying authentication
module".
This (I believe) must be a PAM-related error, but I just cant figure
out how to configure
the PAM-related modules; common-auth,common-password and
common-session.
These file looks like this:

/etc/pam.d/common-auth:

# This file is autogenerated by pam-config.
# Authentication-related modules common to all services
#
# This file is included from other service-specific PAM config files,
# and should contain a list of the authentication modules that define
# the central authentication scheme for use on the system
# (e.g., /etc/shadow, LDAP, Kerberos, etc.). The default is to use the
# traditional Unix authentication mechanisms.
#
auth required pam_env.so
auth sufficient pam_unix2.so
auth required pam_ldap.so use_first_pass

/etc/pam.d/common-passwd:

# This file is included from other service-specific PAM config files,
# and should contain a list of modules that define the services to be
# used to change user passwords.
#
password requisite pam_pwcheck.so nullok cracklib
password sufficient pam_unix2.so use_authtok nullok
password required pam_ldap.so try_first_pass use_authtok

/etc/pam.d/common-session:

# Session-related modules common to all services
#
# This file is included from other service-specific PAM config files,
# and should contain a list of modules that define tasks to be
performed
# at the start and end of sessions of *any* kind (both interactive and
# non-interactive
#
session optional pam_mkhomedir.so
session required pam_limits.so
session required pam_unix2.so
session optional pam_ldap.so
session optional pam_umask.so

/etc/pam.d/login:

#%PAM-1.0
auth requisite pam_nologin.so
auth [user_unknown=ignore success=ok ignore=ignore auth_err=die
default=bad] pam_securetty.so
auth include common-auth
account include common-account
password include common-password
session required pam_loginuid.so
session include common-session
session required pam_lastlog.so nowtmp
session optional pam_mail.so standard
session optional pam_ck_connector.so


I'm stuck with this so any help or hints is appreciated.


--
slacktom
------------------------------------------------------------------------
slacktom's Profile: http://forums.novell.com/member.php?userid=116945
View this thread: http://forums.novell.com/showthread.php?t=444975