ubuntuforums-unanswered team mailing list archive

Thread
Date

[Question #76719]: sudo-ldap not authing with ldap

To: ubuntuforums-unanswered@xxxxxxxxxxxxxxxxxxx
From: bubble1975 <question76719@xxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 11 Jul 2009 23:15:50 -0000
Reply-to: question76719@xxxxxxxxxxxxxxxxxxxxx
Sender: bounces@xxxxxxxxxxxxx

New question #76719 on sudo in ubuntu:
https://answers.launchpad.net/ubuntu/+source/sudo/+question/76719

Hi all,

I'm trying to get sudo-ldap working but am having issues. I'm using Fiesty (I think). I installed sudo-ldap and all required dependencies. I was able to get LDAP to work while authing users to log in on this box, so that part works. I added the line:

SUDOERS_BASE ou=SUDOers,dc=mydomain,dc=com

to /etc/ldap/ldap.conf. Also added:

sudoers: files ldap

to /etc/common.*

/etc/pam.d/sudo is there and looks right, pam stuff looks OK, it is authing SSH and local logins against the LDAP server.

I know it CAN work, as we have several RedHat machines using LDAP based sudo against the LDAP server, I just don't know what I'm missing for Ubuntu... I can't seem to find Ubuntu specific docs for this config. I tried following the docs for the source distribution, and that got it working on RedHat, but Ubuntu is still not working... Can anyone point me in the right direction?

weiler@host:~$ sudo -s
sudo: uid 15000 does not exist in the passwd file!
weiler@host:~$ 2009-07-11 16:13:19 Failed to get user name for uid 15000

UID 15000 is my uid number for user 'weiler', and I can 'id' and 'finger' myself and that works:

weiler@host:~$ id weiler
uid=15000(weiler) gid=1000(ldapusers) groups=1000(ldapusers)
weiler@host:~$

Why can't sudo see it?

Thanks a million!

--
You received this question notification because you are a member of UF
Unanswered Posts Team, which is an answer contact for Ubuntu.