- 论坛徽章:
- 0
|
需求:ldap来管理samba和vsftp的账号密码,目前我基本调通了samba和ldap的整合!但是vsftp如果用到ldap里面的账户登录死活不行。我要达到的目的就是修改了ldap用户的密码,samba和ftp的密码也一并修改了。现在就卡在vsftp和ldap整合了,网上的文档我参考了很多还是不行,希望有做过这方面的朋友指导指导,小弟我感激不尽!
操作步骤:
1、我现在在系统里面增加一个用户
2、然后smbpasswd -a 用户
[root@localhost pam.d]# smbclient -L 127.0.0.1 -U zengzhunzhun
Password:
Domain=[LOCALHOST] OS=[Unix] Server=[Samba 3.0.33-3.14.el5]
Sharename Type Comment
--------- ---- -------
IPC$ IPC IPC Service (Samba Server Version 3.0.33-3.14.el5)
zengzhunzhun Disk Home Directories
Domain=[LOCALHOST] OS=[Unix] Server=[Samba 3.0.33-3.14.el5]
Server Comment
--------- -------
Workgroup Master
--------- -------
SDN LOCALHOST
WORKGROUP ZENGZHUNZHUN-PC
3、最后拿这个用户去连接vsftp
[root@localhost pam.d]# ftp 127.0.0.1
Connected to 127.0.0.1.
220 (vsFTPd 2.0.5)
530 Please login with USER and PASS.
530 Please login with USER and PASS.
KERBEROS_V4 rejected as an authentication type
Name (127.0.0.1:root): zengzhunzhun
331 Please specify the password.
Password:
530 Login incorrect.
Login failed.
ftp>
4、报错日志messages
May 9 05:28:33 localhost vsftpd: pam_ldap: error trying to bind as user "uid=zengzhunzhun,dc=sdn,dc=com" (Invalid credentials)
报错日志secure
May 9 05:28:33 localhost vsftpd: pam_unix(vsftpd:auth): authentication failure; logname= uid=0 euid=0 tty=ftp ruser=zengzhunzhun rhost=localhost.localdomain user=zengzhunzhun
网上很多资料都说需要用到pam去认证,我也加到/etc/pam.d/vsftpd文件了
auth sufficient /lib64/security/pam_ldap.so
account sufficient /lib64/security/pam_ldap.so
5、vsftpd.conf文件就关闭了匿名登录并且增加了两行
local_root=/home
chroot_local_user=YES
网上找了很多资料都不行,为什么不能拿这个ldap中的用户去登录呢? |
|