[debian-lan-devel] would you please give me a hand with debian-lan ldap?
Andreas B. Mundt
andi.mundt at web.de
Thu Feb 27 15:36:19 UTC 2014
Hi Richard,
On Thu, Feb 27, 2014 at 02:14:12PM +0100, Richard C Hidalgo Lorite wrote:
> maybe general steps to debug the problem?
>
> fresh installed workstation00 is not able to connect to ldap server, to
> reproduce:
>
> -Open a shell on workstation00
> -Enter login: anyname, password: anypassword
> -It returns Login incorrect
>
> Inspecting syslog both workstation00 and mainserver i've found:
>
> workstation00 nslcd[1737]: [a7c4c9] <passwd="anyname"> no available LDAP
> server found: Server is unavailable.
>
> ldap is up and running in mainserver with no customization (conf from
> debian-lan/fai scripts)
Did the installation (mainserver and workstation) succeed without
serious errors? Check in /var/log/fai/*
Debian-LAN uses Kerberos to authenticate. To debug, take a look at
the KDC logs at the mainserver (/var/log/kdc.log iirc).
Can you fetch a kerberos ticket? Try "kinit <username>" on the
mainserver and on the workstation00 if possible.
Do you have kerberos keytabs available on the workstation00? If not,
try "debian-lan key2machine workstation00" on the mainserver iirc.
I hope this is not jessie, because that's probably broken and needs
much more work to get in a production state.
Hope that helps,
Andi
More information about the debian-lan-devel
mailing list