I'm working on Openldap for a few days and i'm trying to authenticate
unix users via ldap, pam & nss.
After long research, I don't have really understood the exact function
of these different tools and files (Of course, I know that they are used
to authenticate via ldap...) :
pam_ldap : does it use pam_ldap.conf or /etc/ldap/ldap.conf ?
libnss_ldap : when it is used and for what ? does it use the
libnss_ldap.conf or the ldap.conf ?
I ask these questions because of i've red a lot of tutorials and no one
exactly answers to these questions.
Another problem :
I've used this tutorial :
With this, I succeed in creating users and i can log with them, even if
their are only declared in the ldap directory (which is quiet normal).
But on localhost only.
While trying to log with ssh, i've got this error in auth.log :
Feb 14 16:35:15 www sshd: error: PAM: Authentication failure for
illegal user timmy from www
Feb 14 16:35:15 www sshd: Failed keyboard-interactive/pam for
illegal user timmy from 192.168.0.3 port 36995 ssh2
Someone can help me ?
Thx a lot