My experience with libnss-ldap is that nscd allows sudo but not su. Also the GUI authentication doesn't work.
I just got around to testing libnss-ldapd and I can verify that both sudo and su work there. Ubuntu's gui authentication process does not work though. When you try to perform a privileged action like adding a printer it opens the "Authentication" dialogue and asks for a password. When you enter an ldap password it returns "bad password" and the entire printer config system freezes. The following errors are from auth.log: May 7 11:53:11 engine cupsd: pam_unix(cups:auth): check pass; user unknown May 7 11:53:11 engine cupsd: pam_unix(cups:auth): authentication failure; logname= uid=0 euid=0 tty=cups ruser= rhost=localhost May 7 11:53:11 engine cupsd: pam_unix(cups:account): could not identify user (from getpwnam(lquigley)) -- NSS using LDAP+SSL breaks setuid applications like su and sudo https://bugs.launchpad.net/bugs/423252 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
