From: Tom Lieuallen (toml@engr.orst.edu)
Date: Thu Aug 04 2005 - 17:40:32 EDT
Kudos to Matt. The crle lines did the trick. I already had
ipnodes: files dns
But, the crle did the trick.
Many, many thanks.
Tom Lieuallen
Oregon State University
> >
> > We have an LDAP environment using DS 5.2 and are migrating clients from
> > solaris 8 to solaris 10. We're having a problem authenticating with
> > sudo on the solaris 10 boxes. sudo is compiled to use pam. If I change
> > the authentication on the machine to 'simple', sudo works. If I change
> > to 'tls:simple' (our preferred method), sudo does not work.
...
...
> > sudo's error message is: pam_authenticate: No account present for user
> >
> > I do find it curious that when I run sudo in solaris 10, the following
> > is issued to the ldap server:
...
...
> Hi Tom,
>
> I don't know if this is the right way to do it, but I fixed our
> similar su (not sudo) problem by the following steps:
>
> 1) make sure /etc/nsswitch.conf has this entry in it:
> ipnodes: files
>
> 2) must run these commands as root:
> crle -u -s /usr/lib/mps
> crle -64 -u -s /usr/lib/mps/64
>
> Other than that I didn't need to do anything different than solaris 9.
> I did have to run this command on occasion though:
>
> svcadm enable svc:/network/ldap/client:default
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:31:15 EDT