On Mon, Oct 23, 2006 at 12:44:42PM +0300, "Αποστόλης Παπαγιαννάκης (Apostolis Papagiannakis)" wrote:
Axel Thimm wrote:
On Mon, Oct 23, 2006 at 11:04:18AM +0300, "Αποστόλης Παπαγιαννάκης (Apostolis Papagiannakis)" wrote:
I've had similar "User unknowns" with nscd in the past. I was using dovecot ->getpwent -> nscd -> nss_ldap -> LDAP.
Are you using ldapi?
Oops, I think I sent my previous post with unreadable HTML formating. I hope this one is OK.
In /etc/ldap.conf (nss_ldap conf file) I use two ldap servers as "ldaps" URIs.
# /etc/ldap.conf uri ldaps://ldap1.auth.gr/ ldaps://ldap2.auth.gr/
apap
You need to make sure that the user nscd is running as has proper permissions to the required resources (r/w on ldapi sockets, read on ldaps' ca certs and the like). Turn on the debug level in ldap.conf (nss_ldap's, not openssl's) and sudo to the nscd user/group to test the access.
Also nscd doesn't use rootbinddn, it uses binddn.
Axel.Thimm at ATrpms.net