need some help please

[alexia32]

Hello

I have configured on ldap client on my aix system. the LDAP server is a windows OS.
I can see the user ldap defined and I have configured kerberos as described by white paper IBM:
see white paper link here:

http://www.ibm.com/developerworks/aix/library/au-aixadsupport.html

chuser -R KRB5ALDAP SYSTEM=KRB5ALDAP registry=KRB5ALDAP <user1LDAP>

then I tried to connect with user1LDAP on the aix server and gets acces denied

Don;t know if I missed a step

If one of you done it before let me know what I need to do or modify.

Cheers
Al

 

[khalidaaa]

Have you looked at this troubleshooting page?

http://www.ibm.com/developerworks/aix/library/au-ldapconfg/index.html?ca=drs-

Might have some clues!

Regards,
Khalid

 

[victorv]

hi,

try

./kinit Administrator@WINDOMAIN.LAN

if it asks password, enter it, bingo.

Warning 2 things:

- Uppercase or lowercase is important, as
full or not domain name

- Clock between systems is critical
(however it will be told)

Use also ./klist and ./kinit -R

ciao
vittorio

 

[alexia32]

Hi
thanks for the reply
So I tried and check everything I can know and check clock it is the same
But still have "invalid user or passwd"

I can see the user on LDAP, I modified the /usr/lib/security/methods.cfg and /etc/security/ldap/sfu30user.map and ldap.cfg as requested but still the same...

I have missed something for sure but don;t know what...

I am still investigating.

Cheers
al