Join Log in
Score:0
NASH7 avatar Ubuntu

Ubuntu LDAP - does not work without connection to LDAP server?

tj flag
NASH7

I've configured LDAP on couple U20 virtual servers. Everything works when those servers have connection to LDAP Server but as soon as I disconnect them I cannot login anymore. Not even with root or with LDAP users.

Is there a possibility to allow some specific local users or have an offline copy? I've read about sssd but somehow did not work.

Any other alternatives?

Thanks!

68
1 + 0
Score:0
avatar Ubuntu
ru flag
Thomas Ward

Do you have libpam-ccreds installed? The libpam-ccreds package should cache LDAP creds locally when you're not around on an LDAP connection, and allow cached creds to work. Install that, reboot, do an LDAP login with LDAP connected, then disconnect and try your auth without LDAP again.

(Originally based on the answer here: https://serverfault.com/questions/665061/caching-openldap-credentials-for-offline-use-on-laptops)

+ 3
NASH7 avatar
tj flag
NASH7
Thank you. That worked. I tried deleting one user out of LDAP group to test if he can still connect to the server. Even after updating db that user can still connect and when I try cc_dump user is still being shown. Any idea how to solve that..?
0
Reply
ru flag
Thomas Ward
@NASH7 because the credentials are still being cached and a local user was created. You have to delete the local user and such, however I do not know how to clear that out of PAM. I assume you rebooted since changing the LDAP groups, etc. of your test user?
0
Reply
NASH7 avatar
tj flag
NASH7
Yes. That I did but it didn't help. Thanks. I will try to figure it out. I found no way to clear the cache.
0
Reply
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.