From: Khan, M. [SMO] <MK...@fr...> - 2006-02-22 22:11:44
|
Jamie why I am getting this error when changing password. Feb 22 14:09:19 dublx09 l/usermin/changepass/changepass.cgi: pam_ldap: erro= r try ing to bind as user "uid=3Dmkhan,ou=3DPeople, dc=3Dnoam,dc=3Dcorp,dc=3Dfrk,= dc=3Dcom" (Invali d credentials) -----Original Message----- From: Khan, Mohammed [SMO]=20 Sent: Wednesday, February 22, 2006 1:14 PM To: 'web...@li...' Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan Jamie, Pls any update. -----Original Message----- From: Khan, Mohammed [SMO]=20 Sent: Tuesday, February 21, 2006 4:16 PM To: 'web...@li...' Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan Jamie, any update please. -----Original Message----- From: Khan, Mohammed [SMO]=20 Sent: Monday, February 20, 2006 10:20 PM To: 'web...@li...' Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan RedHat AS2.1 -----Original Message----- From: web...@li... [mailto:web...@li...]On Behalf Of Jamie Cameron Sent: Monday, February 20, 2006 9:10 PM To: web...@li... Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan Which Linux distributon are you using there? - Jamie On 20/Feb/2006 23:37 Khan, Mohammed [SMO] wrote .. > I not able to find the file in my server, I can you pls send me the file > and I can put it in my server. Thanks. >=20 > -----Original Message----- > From: web...@li... > [mailto:web...@li...]On Behalf Of Jamie > Cameron > Sent: Sunday, February 19, 2006 6:39 AM > To: web...@li... > Subject: RE: [webmin-l] Webmin Servers, Broadcast/scan >=20 >=20 > Hi Mohammed, > That is not the correct file, sorry. The one you attached is for the NSS-= LDAP > configuration, but there is also a separate file for PAM-LDAP configurati= on. > I am not sure where it would be located on your system though - it varies > from one Linux distribution to another. >=20 > - Jamie >=20 > -----Original Message----- >=20 > From: "Khan, Mohammed [SMO]" <MK...@fr...> > Subj: RE: [webmin-l] Webmin Servers, Broadcast/scan > Date: Sat 18 Feb 2006 5:55 am > Size: 2K > To: <web...@li...> >=20 > Morning Jamie, > I am attaching my ldap.conf file please check and let me know what I am > doing wrong. If I an able the bindpw I am not able to login to usermin. > Please check if the way I have set it up is correct. Do I create a file > /etc/ldap.secret and copy the line from ldap.conf file. Please let me > know > # @(#)$Id: ldap.conf,v 1.27 2003/01/17 21:37:12 lukeh Exp $ > # > # This is the configuration file for the LDAP nameservice > # switch library and the LDAP PAM module. > # > # PADL Software > # http://www.padl.com > # >=20 > # Your LDAP server. Must be resolvable without using LDAP. > # Multiple hosts may be specified, each separated by a > # space. How long nss_ldap takes to failover depends on > # whether your LDAP client library supports configurable > # network or connect timeouts (see bind_timelimit). > #host 127.0.0.1 > host dublx06.noam.corp.frk.com >=20 > # The distinguished name of the search base. > #base dc=3Dexample,dc=3Dcom > #base dc=3Dpeople,dc=3Dnoam,dc=3Dcorp,dc=3Dfrk,dc=3Dcom > base dc=3Dnoam,dc=3Dcorp,dc=3Dfrk,dc=3Dcom >=20 > # Another way to specify your LDAP server is to provide an > # uri with the server name. This allows to use > # Unix Domain Sockets to connect to a local LDAP Server. > #uri ldap://127.0.0.1/ > #uri ldaps://127.0.0.1/ > #uri ldapi://%2fvar%2frun%2fldapi_sock/ > # Note: %2f encodes the '/' used as directory separator >=20 > # The LDAP version to use (defaults to 3 > # if supported by client library) > ldap_version 3 >=20 > # The distinguished name to bind to the server with. > # Optional: default is to bind anonymously. > #binddn cn=3Dproxyuser,dc=3Dexample,dc=3Dcom > #binddn cn=3DDirectory Manager >=20 > # The credentials to bind with. > # Optional: default is no credential. > bindpw secret > # The distinguished name to bind to the server with > # if the effective user ID is root. Password is > # stored in /etc/ldap.secret (mode 600) > #rootbinddn cn=3Dmanager,dc=3Dexample,dc=3Dcom > rootbinddn cn=3DDirectory Manager >=20 > # The port. > # Optional: default is 389. > #port 389 >=20 > # The search scope. > #scope sub > #scope one > #scope base >=20 > # Search timelimit > #timelimit 30 >=20 > # Bind timelimit > #bind_timelimit 30 >=20 > # Idle timelimit; client will close connections > # (nss_ldap only) if the server has not been contacted > # for the number of seconds specified below. > #idle_timelimit 3600 >=20 > # Filter to AND with uid=3D%s > #pam_filter objectclass=3Daccount > pam_filter objectclass=3DposixAccount >=20 > # The user ID attribute (defaults to uid) > pam_login_attribute uid >=20 > # Search the root DSE for the password policy (works > # with Netscape Directory Server) > #pam_lookup_policy yes >=20 > # Check the 'host' attribute for access control > # Default is no; if set to yes, and user has no > # value for the host attribute, and pam_ldap is > # configured for account management (authorization) >=20 > --- message truncated --- ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D103432&bid=3D230486&dat=3D1= 21642 - Forwarded by the Webmin mailing list at web...@li... To remove yourself from this list, go to http://lists.sourceforge.net/lists/listinfo/webadmin-list Notice: All email and instant messages (including attachments) sent to or from Franklin Templeton Investments (FTI) personnel may be retained, monitored and/or reviewed by FTI and its agents, or authorized law enforcement personnel, without further notice or consent. |