|
| My employer has told me to use PAM to authenticate users against
Novell's NDS. I looked at PADL's pam_ldap module, but the schema
doesn't line up with our NDS server, so we're stuck with a
roll-your-own solution.
I started with the PADL code, and basically re-worked bits of it to
work with NDS. The catch is that it SEEMS to work, but the Solaris
box won't let me log in. I'm sending debug messages to the console,
and I can see that the module connects to NDS, gets my DN, and checks
my password. pam_sm_authenticate returns PAM_SUCCESS, but then Solaris
gives me several "Login Incorrect" messages, and I can't get in.
Has anyone else seen this?
All the documentation says that as long as pam_sm_authenticate returns
PAM_SUCCESS, I ought to be allowed in, but that;s not what's
happening. Is it my code or my config?
Mark
|
|