Tim Alberts
2011-Feb-18 17:13 UTC
[CentOS] nss_ldap: reconnected to LDAP server ldap://127.0.0.1
Hello, I have a problem that I'm really having trouble figuring out. I run CentOS Linux 5.5. I have three servers. All have been setup and running with LDAP authentication for a couple years with absolutely no problems. Unfortunately a couple weeks ago, we had a power outage. Ever since, I am having continuous problems with authentication to the server. I see in /var/log/messages nss_ldap: reconnected to LDAP server ldap://127.0.0.1 I did run a yum update that installed an update to ldap, however that did not fix the issue. I have seen a post mentioning changing 'nss_connect_policy persist' to 'nss_connect_policy oneshot'. However I don't see this setting in my server, and again, the server was working perfectly fine for years before the power outage. I'm really thinking that some file got corrupted and I just need to clean it out. Maybe a cache file somewhere? Following is ldap.conf file. Any suggestions? <ldap.conf> base dc=inside,dc=msi timelimit 120 bind_timelimit 120 idle_timelimit 3600 nss_initgroups_ignoreusers root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman rootbinddn cn=Manager,dc=inside,dc=msi nss_base_passwd ou=People,dc=inside,dc=msi nss_base_shadow ou=People,dc=inside,dc=msi nss_base_group ou=Group,dc=inside,dc=msi uri ldap://127.0.0.1 ldap://my.domain ssl no tls_cacertdir /etc/openldap/cacerts pam_password md5 </ldap.conf>
Tim Alberts
2011-Feb-18 18:11 UTC
[CentOS] nss_ldap: reconnected to LDAP server ldap://127.0.0.1
On 2/18/2011 9:13 AM, Tim Alberts wrote:> Hello, I have a problem that I'm really having trouble figuring out. I > run CentOS Linux 5.5. I have three servers. All have been setup and > running wi..Update, using Webmin to restart the server, I see the following: Stopping slapd: [ OK ] Stopping slurpd: [ OK ] Checking configuration files for slapd: bdb_db_open: unclean shutdown detected; attempting recovery. bdb_db_open: Recovery skipped in read-only mode. Run manual recovery if errors are encountered. config file testing succeeded [ OK ] Starting slapd: [ OK ] Starting slurpd: [ OK ] I've been reading that the recovery is supposed to be automatic. Unfortunately it seems to be a read-only mode. Anyone know why it is read-only mode? Anyone have a simple tutorial on running 'db_recover' command?
m.roth at 5-cent.us
2011-Feb-18 18:13 UTC
[CentOS] nss_ldap: reconnected to LDAP server ldap://127.0.0.1
Tim Alberts wrote:> Hello, I have a problem that I'm really having trouble figuring out. I > run CentOS Linux 5.5. I have three servers. All have been setup and > running with LDAP authentication for a couple years with absolutely no > problems. > > Unfortunately a couple weeks ago, we had a power outage. Ever since, I > am having continuous problems with authentication to the server. I see > in /var/log/messages<snip> Have you resynched everyone's timeclock? mark