I''ve setup my Fedora box to authenticate SSH session off Fedora Directory, however I''m having some trouble getting X session to authenticate. I searched on google and found someone with exactly the same problem, unfortunately noone seemed to have an answer for them at the time: http://mail.gnome.org/archives/gdm-list/2003-January/msg00012.html Is anyone successfully authenticating X sessions with GDM & LDAP? Thanks, Ian.
On Fedora/Redhat, it''s easiest to use "system-config-authentication" rather than picking at PAM config files et al. It there a reason you can''t do that? (there are a few) Ian Bishop wrote:> I''ve setup my Fedora box to authenticate SSH session off Fedora > Directory, however I''m having some trouble getting X session to > authenticate. > > I searched on google and found someone with exactly the same problem, > unfortunately noone seemed to have an answer for them at the time: > > http://mail.gnome.org/archives/gdm-list/2003-January/msg00012.html > > > Is anyone successfully authenticating X sessions with GDM & LDAP? > > Thanks, > Ian. > > > > -- > Fedora-directory-users mailing list > Fedora-directory-users@redhat.com > https://www.redhat.com/mailman/listinfo/fedora-directory-users > >
Ian Bishop wrote:> I''ve setup my Fedora box to authenticate SSH session off Fedora > Directory, however I''m having some trouble getting X session to > authenticate. > > I searched on google and found someone with exactly the same problem, > unfortunately noone seemed to have an answer for them at the time: > > http://mail.gnome.org/archives/gdm-list/2003-January/msg00012.html > > > Is anyone successfully authenticating X sessions with GDM & LDAP?I think this bug has been around for a long time, and I can''t recall the exact genesis of it, but it appears to be a bug in GDM. For some reason it can''t authenticate to LDAP unless SSL is turned on. I recall seeing it in a Red Hat bugzilla list some time back but nobody seemed interested in pursuing it. I''ve tried searching for it again there recently but there are a lot of bugs reported on that system and the search tools aren''t great. It does periodically recurr on bugzilla, e.g. https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=196297 KDM is probably a better choice. -- Del Babel Com Australia http://www.babel.com.au/ ph: 02 9368 0728 fax: 02 9368 0758
El Miércoles, 2 de Agosto de 2006 05:02, Del escribió:> Ian Bishop wrote: > > I''ve setup my Fedora box to authenticate SSH session off Fedora > > Directory, however I''m having some trouble getting X session to > > authenticate. > > > > I searched on google and found someone with exactly the same problem, > > unfortunately noone seemed to have an answer for them at the time: > > > > http://mail.gnome.org/archives/gdm-list/2003-January/msg00012.html > > > > > > Is anyone successfully authenticating X sessions with GDM & LDAP?Does your user has the shell atribute in DS? -- Patricio Bruna V. Red Hat Certified Engineer IT Linux Ltda. http://www.it-linux.cl Fono/Fax: (+56-2) 697 11 66 Cel: (+56-8) 288 51 95
Del wrote:> Ian Bishop wrote: > >> I''ve setup my Fedora box to authenticate SSH session off Fedora >> Directory, however I''m having some trouble getting X session to >> authenticate. >> >> I searched on google and found someone with exactly the same problem, >> unfortunately noone seemed to have an answer for them at the time: >> >> http://mail.gnome.org/archives/gdm-list/2003-January/msg00012.html >> >> >> Is anyone successfully authenticating X sessions with GDM & LDAP? > > > I think this bug has been around for a long time, and I can''t recall > the exact genesis of it, but it appears to be a bug in GDM. For > some reason it can''t authenticate to LDAP unless SSL is turned on. >Hi, I have FC5 -> GDM -> LDAP authentication working. The strange thing is that the password must be entered into the first prompt, and username into the second prompt... And sometimes you have to give the username and password combo twice before becoming authenticated. I''m still trying to figure out whether the bug is in the pam modules or GDM... But I haven''t really had the time or proper motivation to analyze it with a debugger or ethereal yet. BR, Mike -- http://www.netauth.com - LDAP Directory Consulting