Hello everyone, I'm new here and I was reading a lot about OpenLDAP issues, that concerns me a lot, since I've purchased different licences of ClearOS and can't make this work correctly.
This is the situation in a nutshell:
Flexshare is working, I've created some web resources and add groups to it. The issue comes when I try to access through web browser and authentications come's up. No matter what user or group I choose, authentication is not working.
Here's what /var/log/messages says: "clear pwauth: pam_ldap: ldap_search_s No such object"
This is the overview of other things that I look to identify the problem:
I can connect and list everything in Apache Open Directory, users and groups exists and they're ok in case this was a permission issue.
Webserver state is "dead" in ClearOS panel (not sure if this has something related to this issue), when I try to start it doesn't work and keeps dead. Log: "clear clearsyncd[17908]: WebServerRestart: sudo /usr/sbin/syncaction web_server configuration_change_event: 256"
Restarted the slapd service normally, but logs shows: "clear nslcd[967]: [bad625] no available LDAP server found"
Added "auth sufficient pam_ldap.so" to /etc/pam.d/sshd (I've readed that could work in other forums)
With that said, I'm not an expert in OpenLDAP but it everything points to authentication method used by the browser, each time I tried to login the only thing I could find is "clear pwauth: pam_ldap: ldap_search_s No such object" in logs.
Thanks for reading, and please lend me a hand on this, I need to control access for different groups via web browser.
This is the situation in a nutshell:
Flexshare is working, I've created some web resources and add groups to it. The issue comes when I try to access through web browser and authentications come's up. No matter what user or group I choose, authentication is not working.
Here's what /var/log/messages says: "clear pwauth: pam_ldap: ldap_search_s No such object"
This is the overview of other things that I look to identify the problem:
I can connect and list everything in Apache Open Directory, users and groups exists and they're ok in case this was a permission issue.
Webserver state is "dead" in ClearOS panel (not sure if this has something related to this issue), when I try to start it doesn't work and keeps dead. Log: "clear clearsyncd[17908]: WebServerRestart: sudo /usr/sbin/syncaction web_server configuration_change_event: 256"
Restarted the slapd service normally, but logs shows: "clear nslcd[967]: [bad625] no available LDAP server found"
Added "auth sufficient pam_ldap.so" to /etc/pam.d/sshd (I've readed that could work in other forums)
With that said, I'm not an expert in OpenLDAP but it everything points to authentication method used by the browser, each time I tried to login the only thing I could find is "clear pwauth: pam_ldap: ldap_search_s No such object" in logs.
Thanks for reading, and please lend me a hand on this, I need to control access for different groups via web browser.
Share this post:
Responses (1)
-
Accepted Answer
The issue comes when I try to access through web browser and authentications come's up.
Do I understand correctly, when visiting a flexshare website from a client machine which is authenticated via LDAP, you get some sort of login box?
Did you try and give <allusers> all access? Does that work?
Any traces to this issue in logging? (/var/log/secure, ../messages, ../system or ../ldap (<- if setup))
Please login to post a reply
You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here.
Register Here »