Authentication via Mac 10.6 LDAP

[Conor Klecker]

On Mon, Jan 30, 2012 at 4:55 PM, Tony Yarusso <tonyyarusso at gmail.com> wrote:

> I'd start with auth.log on the Ubuntu system and wherever LDAP logs to on
> the Mac.
>

Thank you I was unaware of auth.log

I can now ssh into the vm with LDAP credientals, and su to users, but when
I try to login on the VM from the main login window it goes black like its
loading Unity, then kicks back out to the login window. And it adds the
user I tried logging in with to the list of users.

here is the auth.log

Jan 31 12:26:38 BIOCA-401VM0999 su[2505]: Successful su for cpklecker by
bioadmin
Jan 31 12:26:38 BIOCA-401VM0999 su[2505]: + /dev/pts/0 bioadmin:cpklecker
Jan 31 12:29:58 BIOCA-401VM0999 polkitd(authority=local): Unregistered
Authentication Agent for unix-session:/org/freedesktop/ConsoleKit/Session7
(system bus name :1.84, object path
/org/gnome/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8)
(disconnected from bus)
*Jan 31 12:30:02 BIOCA-401VM0999 lightdm: pam_succeed_if(lightdm:auth):
requirement "user ingroup nopasswdlogin" not met by user "bioadmin"*
Jan 31 12:30:02 BIOCA-401VM0999 dbus[759]: [system] Rejected send message,
2 matched rules; type="method_call", sender=":1.106" (uid=104 pid=2589
comm="/usr/lib/indicator-datetime/indicator-datetime-ser")
interface="org.freedesktop.DBus.Properties" member="GetAll" error
name="(unset)" requested_reply="0" destination=":1.14" (uid=0 pid=1145
comm="/usr/sbin/console-kit-daemon --no-daemon ")
Jan 31 12:30:04 BIOCA-401VM0999 lightdm: pam_unix(lightdm:auth):
conversation failed
Jan 31 12:30:04 BIOCA-401VM0999 lightdm: pam_unix(lightdm:auth): auth could
not identify password for [bioadmin]
Jan 31 12:30:04 BIOCA-401VM0999 lightdm: gkr-pam: no password is available
for user
Jan 31 12:30:06 BIOCA-401VM0999 lightdm: pam_succeed_if(lightdm:auth):
requirement "user ingroup nopasswdlogin" not met by user "biotest"
Jan 31 12:30:13 BIOCA-401VM0999 dbus[759]: [system] Rejected send message,
2 matched rules; type="method_call", sender=":1.115" (uid=104 pid=2684
comm="/usr/lib/indicator-datetime/indicator-datetime-ser")
interface="org.freedesktop.DBus.Properties" member="GetAll" error
name="(unset)" requested_reply="0" destination=":1.14" (uid=0 pid=1145
comm="/usr/sbin/console-kit-daemon --no-daemon ")
Jan 31 12:32:36 BIOCA-401VM0999 lightdm: pam_nologin(lightdm:auth): cannot
determine username
Jan 31 12:32:36 BIOCA-401VM0999 lightdm: pam_succeed_if(lightdm:auth):
requirement "user ingroup nopasswdlogin" not met by user "biotest"
Jan 31 12:32:43 BIOCA-401VM0999 lightdm: pam_succeed_if(lightdm:auth):
requirement "user ingroup nopasswdlogin" not met by user "biotest"
Jan 31 12:32:43 BIOCA-401VM0999 dbus[759]: [system] Rejected send message,
2 matched rules; type="method_call", sender=":1.122" (uid=104 pid=2781
comm="/usr/lib/indicator-datetime/indicator-datetime-ser")
interface="org.freedesktop.DBus.Properties" member="GetAll" error
name="(unset)" requested_reply="0" destination=":1.14" (uid=0 pid=1145
comm="/usr/sbin/console-kit-daemon --no-daemon ")
Jan 31 12:33:02 BIOCA-401VM0999 lightdm: pam_succeed_if(lightdm:auth):
requirement "user ingroup nopasswdlogin" not met by user "biotest"
Jan 31 12:33:02 BIOCA-401VM0999 dbus[759]: [system] Rejected send message,
2 matched rules; type="method_call", sender=":1.129" (uid=104 pid=2874
comm="/usr/lib/indicator-datetime/indicator-datetime-ser")
interface="org.freedesktop.DBus.Properties" member="GetAll" error
name="(unset)" requested_reply="0" destination=":1.14" (uid=0 pid=1145
comm="/usr/sbin/console-kit-daemon --no-daemon ")

Here are a few attempts to login at the main screen after confirming that
from a shell su to an ldap user 'cpklecker' works. The bold line I think is
where the issue is.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-us-wi/attachments/20120131/3f4e5722/attachment.html>