Supplementary groups on LDAP cannot work with RELENG_8 +nss_ldap
Greg Byshenk
freebsd at byshenk.net
Tue Mar 9 19:11:05 UTC 2010
On Tue, Mar 09, 2010 at 09:00:49AM +0800, Linghua Tseng wrote:
> Here is the output of `diff -u /usr/src/etc/nsswitch.conf
> /etc/nsswitch.conf'.
> --- /usr/src/etc/nsswitch.conf 2010-03-08 09:04:25.000000000 +0800
> +++ /etc/nsswitch.conf 2010-03-08 18:01:08.000000000 +0800
> @@ -1,13 +1,13 @@
> #
> # nsswitch.conf(5) - name service switch configuration file
> -# $FreeBSD: src/etc/nsswitch.conf,v 1.1.10.1 2009/08/03 08:13:06 kensmith
> Exp $
> +# $FreeBSD: src/etc/nsswitch.conf,v 1.1 2006/05/03 15:14:47 ume Exp $
> #
> group: compat
> -group_compat: nis
> +group_compat: ldap nis
> hosts: files dns
> networks: files
> passwd: compat
> -passwd_compat: nis
> +passwd_compat: ldap nis
> shells: files
> services: compat
> services_compat: nis
>
> The line `+:*::::::::' has already put into /etc/master.passwd,
> and the line `+:*::' has already put into /etc/group.
I may be completely wrong (I can't seem to find the source), and I
don't know if it is the source of your problem, but I recall it being
reported that 'passwd_compat' and 'group_compat' require a *single*
source entry.
--
greg byshenk - gbyshenk at byshenk.net - Leiden, NL
More information about the freebsd-stable
mailing list