Fedora directory users - Sep 2005 - RE: Problem with solaris & FDS authentication

==The system is using dhcp, btw.  Could that be the problem?
==GT: I do not think it is logical to run an OpenSSH Server on a DHCP
Client with possibly varying IP address, please use Static IP.

=I dont have SSD attributes.  99user.ldif is in the schema directory but
none of those attributes can be added in the properties of default
profile.
==GT: Did you have 61DUAConfigFile.ldif and 62nisDomain.ldif added to
config/schema (and slapd restarted)? They provides all the required
attributes for DUAConfigProfile and nisDomain objects including SSD
(serviceSearchDescriptor). We try not to touch 99user.ldif and the
original 99user.ldif should have a file size of 1321.

-rw-------    1 nobody   nobody       1321 Jun  3 02:39 99user.ldif
-rw-r--r--    1 root     root         3624 Aug 29 02:17
61DUAConfigProfile.ldif
-rw-r--r--    1 root     root          264 Aug 29 02:53 62nisDomain.ldif

Gary

-----Original Message-----
From: fedora-directory-users-bounces@redhat.com
[mailto:fedora-directory-users-bounces@redhat.com] On Behalf Of Igor
Sent: Thursday, September 01, 2005 3:48 AM
To: General discussion list for the Fedora Directory server project.
Subject: RE: [Fedora-directory-users] Problem with solaris & FDS
authentication



started nscd, added debug, still no go.  id testdba works.
> /etc/pam.conf to observe all possible /var/adm/messages for
"sshd"
> processing.
Aug 31 14:04:02 unknown last message repeated 1 time
Aug 31 14:04:02 unknown sshd[413]: [ID 800047 auth.error] error: PAM:
Authentication failed for testdba from cnyitsun01.composers.foo.com Aug
31 14:04:07 unknown sshd[413]: [ID 316739 auth.error] pam_ldap: no legal
authentication method configured

That''s all I get.  The system is using dhcp, btw.  Could that be the
problem?
  
> GT: Use Fedord Management Console to add the three SSDs into the 
> "default" profile,
I dont have SSD attributes.  99user.ldif is in the schema directory but
none of those attributes can be added in the properties of default
profile.


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

--
Fedora-directory-users mailing list Fedora-directory-users@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-directory-users

> ==> GT: Did you have 61DUAConfigFile.ldif and 62nisDomain.ldif added to
> config/schema (and slapd restarted)? They provides all the required
> attributes for DUAConfigProfile and nisDomain objects including SSD
> (serviceSearchDescriptor). We try not to touch 99user.ldif and the
> original 99user.ldif should have a file size of 1321.
No, I got the 99user.ldif from an iDS install.  I thought it is a superset of
61dua &
62nis LDIFs? 


		
____________________________________________________
Start your day with Yahoo! - make it your home page 
http://www.yahoo.com/r/hs

I''ve copied some custom schema files to the config/schema directory. 
In
the Java console, some of the attributes and objectclasses defined in 
the custom schema files show up under "Standard", while others show up
in "User Defined."

Does anyone know how FDS determines that an attribute or objectclass is 
"standard" vs. "user-defined"?  I would think everything
that is defined
in a custom schema file would show up in "user-defined."

Not sure that this really matters much, but just curious.

Thanks,
-- George

George Holbert wrote:
> I''ve copied some custom schema files to the config/schema
directory.
> In the Java console, some of the attributes and objectclasses defined 
> in the custom schema files show up under "Standard", while others
show
> up in "User Defined."
>
> Does anyone know how FDS determines that an attribute or objectclass 
> is "standard" vs. "user-defined"?  I would think
everything that is
> defined in a custom schema file would show up in "user-defined."
We use the X-ORIGIN schema extension with a value of ''user
defined''.
"user-defined" really means "schema that was added over LDAP or
using
the console that''s stored in 99user.ldif".
>
> Not sure that this really matters much, but just curious.
>
> Thanks,
> -- George
>
>
> -- 
> Fedora-directory-users mailing list
> Fedora-directory-users@redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users