On Mon, 2017-04-03 at 19:52 +0200, Laurent Bonnaud wrote: > - libpam-ldapd + libnss-ldap -> fails
This works for me. Note that for this to work you have to include ldap in the shadow map in nsswitch.conf because otherwise pam_unix rejects the login. You should also be able to map the userPassword attribute to "*" using the nss_override_attribute_value in /etc/libnss_ldap.conf but I couldn't get that to work. Can you post the relevant part of auth.log for the above configuration? Thanks, -- -- arthur - adej...@debian.org - https://people.debian.org/~adejong --
signature.asc
Description: This is a digitally signed message part
