Contenu | Rechercher | Menus

Annonce

Si vous avez des soucis pour rester connecté, déconnectez-vous puis reconnectez-vous depuis ce lien en cochant la case
Me connecter automatiquement lors de mes prochaines visites.

À propos de l'équipe du forum.

#1 Le 24/02/2015, à 11:50

natixservice

ldap client ubuntu 14.04

Bonjour la communauté francophone !

J'ai un petit probleme (ca fait juste 1 semaine que je suis dessus...) avec ldap est un client ubuntu 14.04
Voici mes fichier de configuration:
_____________________________________________________________________
/etc/ldap.conf:

   

base dc=ad,dc=school,dc=fr
    uri ldap://dcad1.ad.school.fr
    ldap_version 3
    binddn CN=app,OU=admin,DC=ad,DC=school,DC=fr
    bindpw mypassword
    
    nss_map_objectclass posixAccount user
    nss_map_objectclass shadowAccount user
    nss_map_attribute uid sAMAccountName
    nss_map_attribute homeDirectory unixHomeDirectory
    nss_map_attribute shadowLastChange pwdLastSet
    nss_map_objectclass posixGroup group
    nss_map_attribute uniqueMember member
    pam_login_attribute sAMAccountName
    pam_filter objectclass=User
    nss_base_passwd ou=people,dc=ad,dc=school,dc=fr?sub
    nss_base_group ou=etp,ou=uds,ou=groups,dc=ad,dc=school,dc=fr?sub

_____________________________________________________________________
/etc/nsswitch.conf:

   

passwd:         files ldap
    group:          files ldap
    shadow:         files ldap
    
    hosts:          files mdns4_minimal [NOTFOUND=return] dns mdns4
    networks:       files
    
    protocols:      db files
    services:       db files
    ethers:         db files
    rpc:            db files
    
    netgroup:       nis

_____________________________________________________________________
/etc/krb5.conf:

   

[libdefaults]
           default_realm = AD.SCHOOL.FR
           dns_lookup_realm = true
           dns_lookup_kdc = true
    
    [domain_realm]
          .u-SCHOOL.fr = AD.SCHOOL.FR
          u-SCHOOL.fr = AD.SCHOOL.FR
          .SCHOOL.fr = AD.SCHOOL.FR
          SCHOOL.fr = AD.SCHOOL.FR
          .app.ad.SCHOOL.fr = AD.SCHOOL.FR
          app.ad.SCHOOL.fr = AD.SCHOOL.FR
    
    [logging]
       kdc = FILE:/var/log/krb5kdc.log
       admin_server = FILE:/var/log/krbadmin.log
       default = FILE:/var/log/krb5lib.log

_____________________________________________________________________
/etc/ssh/sshd_config:

    KerberosAuthentication yes
    KerberosOrLocalPasswd yes

_____________________________________________________________________
/etc/pam.d/common-account :

    account sufficient      pam_krb5.so ignore_root realm=AD.SCHOOL.FR
    account required        pam_unix.so

_____________________________________________________________________
Pour /etc/pam.d/common-auth :

    auth    sufficient      pam_krb5.so ignore_root realm=AD.SCHOOL.FR
    auth    required        pam_unix.so nullok_secure try_first_pass

_____________________________________________________________________
/etc/pam.d/common-password :

    password        required        pam_unix.so nullok obscure sha512

_____________________________________________________________________
/etc/pam.d/common-session :

    session sufficient      pam_krb5.so ignore_root realm=AD.UNISTRA.FR
    session required        pam_unix.so

_____________________________________________________________________


La configuration marche parfaitement avec ubuntu 10.04 mais avec ubuntu 14.04 la session s'ouvre et se referme de suite ! Et ca c'est du caca... et ça sent bien la merde
Merci d'avance smile

var/log/auth.log:

    Feb 24 08:58:12 ubuntu-VM2 lightdm: PAM adding faulty module: pam_kwallet.so   
    Feb 24 08:59:26 ubuntu-VM2 lightdm: pam_succeed_if(lightdm:auth): requirement "user ingroup nopasswdlogin" not met by user "baillard"    
    Feb 24 08:59:32 ubuntu-VM2 lightdm: pam_krb5(lightdm:auth): user baillard authenticated as baillard@AD.SCHOOL.FR   
    Feb 24 08:59:36 ubuntu-VM2 lightdm: pam_unix(lightdm-greeter:session): session closed for user lightdm    
    Feb 24 08:59:41 ubuntu-VM2 lightdm: PAM unable to dlopen(pam_kwallet.so): /lib/security/pam_kwallet.so: cannot open shared object file: No such file or directory    
    Feb 24 08:59:41 ubuntu-VM2 lightdm: PAM adding faulty module: pam_kwallet.so    
    Feb 24 08:59:46 ubuntu-VM2 lightdm: pam_unix(lightdm-greeter:session): session opened for user lightdm by (uid=0)    
    Feb 24 08:59:46 ubuntu-VM2 systemd-logind[534]: New session c5 of user lightdm.    
    Feb 24 08:59:56 ubuntu-VM2 lightdm: PAM unable to dlopen(pam_kwallet.so): /lib/security/pam_kwallet.so: cannot open shared object file: No such file or directory
    Feb 24 08:59:56 ubuntu-VM2 lightdm: PAM adding faulty module: pam_kwallet.so

Dernière modification par natixservice (Le 24/02/2015, à 12:01)

Hors ligne