On Wed, 22.08.2007 at 13:47:43 -0500, Scot Hetzel wrote:
> Does the following work for you:
>
> passwd: ldap [notfound=return] files
> group: ldap [notfound=return] files
>
> This sets ldap as the authoritative source for users and groups,
> unless the ldap service is down, then it will use th
On 8/22/07, Ulrich Spoerlein <[EMAIL PROTECTED]> wrote:
> On Wed, 22.08.2007 at 10:28:40 +0200, Patrick M. Hausen wrote:
> > On Wed, Aug 22, 2007 at 09:53:42AM +0200, Ulrich Spoerlein wrote:
> > > That is exactly the gist of my question. Of course I know that a group
> > > oneliner is the way to go
On Wed, 22.08.2007 at 10:28:40 +0200, Patrick M. Hausen wrote:
> On Wed, Aug 22, 2007 at 09:53:42AM +0200, Ulrich Spoerlein wrote:
> > On 8/22/07, Chuck Swiger <[EMAIL PROTECTED]> wrote:
> > > On Aug 21, 2007, at 2:02 PM, Richard Foulkes wrote:
> > > > Ok, so how are you supposed to control members
Hi, all!
On Wed, Aug 22, 2007 at 09:53:42AM +0200, Ulrich Spoerlein wrote:
> On 8/22/07, Chuck Swiger <[EMAIL PROTECTED]> wrote:
> > On Aug 21, 2007, at 2:02 PM, Richard Foulkes wrote:
> > > Ok, so how are you supposed to control membership of the wheel
> > > group via ldap? Ok, you COULD remove t
On 8/22/07, Chuck Swiger <[EMAIL PROTECTED]> wrote:
> On Aug 21, 2007, at 2:02 PM, Richard Foulkes wrote:
> > Ok, so how are you supposed to control membership of the wheel
> > group via ldap? Ok, you COULD remove the local wheel entry in /etc/
> > group, but this would probably be a bad idea if th
On Aug 21, 2007, at 2:02 PM, Richard Foulkes wrote:
Ok, so how are you supposed to control membership of the wheel
group via ldap? Ok, you COULD remove the local wheel entry in /etc/
group, but this would probably be a bad idea if the ldap server
were unavailable.
You've aptly summarized my
Try:
wheel:*:0:root,us
It looks like pam was stopping at the first matching line as you would
expect from the man page for the group file. If there is a bug it is in
the more liberal interpretation by other software.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Ok, so how are you supposed to control membership of the wheel group
via ldap? Ok, you COULD remove the local wheel entry in /etc/group,
but this would probably be a bad idea if the ldap server were
unavailable.
I've had a similar problem to this where group names are duplicated
across di
On Aug 21, 2007, at 12:50 PM, Ulrich Spoerlein wrote:
I found this while trying to migrate groups into LDAP, but you don't
need LDAP to reproduce this, simply place the following in /etc/group
wheel:*:0:root
wheel:*:0:us
That's a misconfiguration. From "man 5 group":
The group field is the
