libnss-ldap
Xen
list at xenhideout.nl
Sat May 13 10:22:11 UTC 2017
I wrote here earlier apparently about libnss-ldap needing a systemd
service file or at least not installing its service that it uses to add
system groups to an ignore list so nsswitch won't try to get them from
LDAP.
Upon installation of this service on a Kubuntu 16.04 system
/usr/lib/insserv/insserv complains that the default start levels are
missing and after that updaterc.d fails when asked to enable the
service.
This service is a /etc/init.d/libnss-ldap file.
I thought earlier that this would be some error with update-rc.d.
However it seems that insserv is meant to create the symlinks?
When insserv is run with -d (use defaults from header file) it works.
So unless I am mistaken this is a bug in update-rc.d? It discards
parameters on the command line because it wants to use the defaults from
the init script but then fails to tell insserv it wants to do that.
Strangely this service and its executable
(/usr/sbin/nssldap-update-ignoreusers) do not exist in the corresponding
Debian package (of almost identical version):
https://packages.debian.org/nl/jessie/amd64/libnss-ldap/filelist
whereas on Ubuntu they are present:
http://packages.ubuntu.com/xenial/amd64/libnss-ldap/filelist
I did not investigate that difference.
LDAP prevents the system from booting if those system users are not
added to an ignore list in /etc/ldap.conf
Comments?
please CC replies, I am not subscribed.
More information about the Ubuntu-devel-discuss
mailing list