Supplementary groups on LDAP cannot work with RELENG_8 +nss_ldap
Linghua Tseng
uranus at tinlans.org
Wed Mar 10 06:58:19 UTC 2010
Thanks.
I have tried to modify my /etc/nsswitch.conf to:
group: compat
group_compat: ldap
hosts: files dns
networks: files
passwd: compat
passwd_compat: ldap
shells: files
services: compat
services_compat: nis
protocols: files
rpc: files
But the problem is still occurred.
--------------------------------------------------
From: "Greg Byshenk" <freebsd at byshenk.net>
Sent: Wednesday, March 10, 2010 3:11 AM
To: "Linghua Tseng" <uranus at tinlans.org>
Cc: "Peter C. Lai" <peter at simons-rock.edu>; <freebsd-stable at freebsd.org>
Subject: Re: Supplementary groups on LDAP cannot work with RELENG_8 +nss_ldap
> On Tue, Mar 09, 2010 at 09:00:49AM +0800, Linghua Tseng wrote:
>
>> Here is the output of `diff -u /usr/src/etc/nsswitch.conf
>> /etc/nsswitch.conf'.
>> --- /usr/src/etc/nsswitch.conf 2010-03-08 09:04:25.000000000 +0800
>> +++ /etc/nsswitch.conf 2010-03-08 18:01:08.000000000 +0800
>> @@ -1,13 +1,13 @@
>> #
>> # nsswitch.conf(5) - name service switch configuration file
>> -# $FreeBSD: src/etc/nsswitch.conf,v 1.1.10.1 2009/08/03 08:13:06 kensmith
>> Exp $
>> +# $FreeBSD: src/etc/nsswitch.conf,v 1.1 2006/05/03 15:14:47 ume Exp $
>> #
>> group: compat
>> -group_compat: nis
>> +group_compat: ldap nis
>> hosts: files dns
>> networks: files
>> passwd: compat
>> -passwd_compat: nis
>> +passwd_compat: ldap nis
>> shells: files
>> services: compat
>> services_compat: nis
>>
>> The line `+:*::::::::' has already put into /etc/master.passwd,
>> and the line `+:*::' has already put into /etc/group.
>
> I may be completely wrong (I can't seem to find the source), and I
> don't know if it is the source of your problem, but I recall it being
> reported that 'passwd_compat' and 'group_compat' require a *single*
> source entry.
>
>
> --
> greg byshenk - gbyshenk at byshenk.net - Leiden, NL
>
>
More information about the freebsd-stable
mailing list