Jan Kundrát wrote:
> Zhi-Wei Lu wrote:
>> I am applying the latest updates to a number of systems, those with LDAP
>> configured failed to boot at "Start system message bus", those
>> without LDAP configured booted just fine!
>>
>> Any suggestion?
>
> Hi, a 5.1 desktop box that is LDAPized boots fine here (using remote
> LDAP servers, not a local slapd). My guess is that your /etc/ldap.conf
> doesn't contain the following line (wrapped for purposes of mail) and
> that network/slapd isn't available by the time dbus starts:
>
> nss_initgroups_ignoreusers
> root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman
>
> That line tells NSS not to ask LDAP for any information concerning the
> listed users, including the user that the dbus ("messagebus") runs under.
>
> Hope this helps,
> -jkt
I have done two things so far,
1. Using the old /etc/ldap.conf file but change ldaps to ldap (turn off
ssl), reboot the system, everything was fine.
2. Turn on ssl and add the nss_initgrous_ignoreusers line, the message
bus was fine and system rebooted, but ldap query is still not working
via ldaps, therefore, the latest nss_dap_253-12 breaks something.
--
Zhi-Wei Lu
Institute for Data Analysis and Visualization
University of California, Davis
(530) 752-0494
|