Jan Kundrát wrote:
> Zhi-Wei Lu wrote:
>> I am applying the latest updates to a number of systems, those with LDAP
>>    configured failed to boot at "Start system message bus",  those
>> without LDAP configured booted just fine!
>>
>> Any suggestion?
> 
> Hi, a 5.1 desktop box that is LDAPized boots fine here (using remote
> LDAP servers, not a local slapd). My guess is that your /etc/ldap.conf
> doesn't contain the following line (wrapped for purposes of mail) and
> that network/slapd isn't available by the time dbus starts:
> 
> nss_initgroups_ignoreusers
> root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman
> 
> That line tells NSS not to ask LDAP for any information concerning the
> listed users, including the user that the dbus ("messagebus") runs under.
> 
> Hope this helps,
> -jkt
I have done two things so far,

1.  Using the old /etc/ldap.conf file but change ldaps to ldap (turn off
ssl),  reboot the system, everything was fine.

2.  Turn on ssl and add the nss_initgrous_ignoreusers line, the message
bus was fine and system rebooted, but ldap query is still not working
via ldaps, therefore, the latest nss_dap_253-12 breaks something.

-- 
Zhi-Wei Lu
Institute for Data Analysis and Visualization
University of California, Davis
(530) 752-0494