HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- LDAP-UX and trusted systems - logins create tcb en...
Operating System - HP-UX
1830908
Members
1787
Online
110017
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-17-2006 03:16 PM
04-17-2006 03:16 PM
Hi all,
I have implemented LDAP-UX on a test server, and created an LDAP server using RedHat Directory Server 7. All users can authenticate and login to the unix box via LDAP. I also have trusted systems turned on.
However, when a user who is only listed in LDAP logs in, an entry for that user is spontaneously created in the /tcb subdirectories. Thus leaving orphaned entries in that directory with no corresponding entry in /etc/passwd. authck -p complains about it. I'm sure that LDAP logins shouldn't create entries in the tcb database, but it seems to.
attached is my /etc/pam.conf file, perhaps something is wrong in there? I have played around but do not know what is going on.
Any help would be much appreciated.
Thank you
- Andrew Gray
I have implemented LDAP-UX on a test server, and created an LDAP server using RedHat Directory Server 7. All users can authenticate and login to the unix box via LDAP. I also have trusted systems turned on.
However, when a user who is only listed in LDAP logs in, an entry for that user is spontaneously created in the /tcb subdirectories. Thus leaving orphaned entries in that directory with no corresponding entry in /etc/passwd. authck -p complains about it. I'm sure that LDAP logins shouldn't create entries in the tcb database, but it seems to.
attached is my /etc/pam.conf file, perhaps something is wrong in there? I have played around but do not know what is going on.
Any help would be much appreciated.
Thank you
- Andrew Gray
Solved! Go to Solution.
2 REPLIES 2
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-17-2006 07:29 PM
04-17-2006 07:29 PM
Solution
Shalom Andrew,
Thus leaving orphaned entries in that directory with no corresponding entry in /etc/passwd. authck -p complains about it. I'm sure that LDAP logins shouldn't create entries in the tcb database, but it seems to.
If the users are able to log in, then this is the correct functioning.
For a user to log into a trusted system, entries are needed in /tcb
The entries are not orphaned, LDAP creates what it needs.
If the users do work, this shows that LDAP does not need /etc/passwd entries for LDAP users. It makes sense.
SEP
Thus leaving orphaned entries in that directory with no corresponding entry in /etc/passwd. authck -p complains about it. I'm sure that LDAP logins shouldn't create entries in the tcb database, but it seems to.
If the users are able to log in, then this is the correct functioning.
For a user to log into a trusted system, entries are needed in /tcb
The entries are not orphaned, LDAP creates what it needs.
If the users do work, this shows that LDAP does not need /etc/passwd entries for LDAP users. It makes sense.
SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-18-2006 11:44 AM
04-18-2006 11:44 AM
Re: LDAP-UX and trusted systems - logins create tcb entries
Hi,
So you're saying that I should ingore authck messages about this?
Now that you mention it, I do recall reading in the LDAP-UX admin guide that under HP-UX 11.00 it will create tcb entries for users. But it says that is only for HP-UX 11.00, not 11.23 which I'm running. So why is my HP-UX 11.23 server exhibiting behaviour that only an HP-UX 11.00 box would exhibit?
Seems strange to me, but I can see your point too.
ideas?
Ta
- Andy
So you're saying that I should ingore authck messages about this?
Now that you mention it, I do recall reading in the LDAP-UX admin guide that under HP-UX 11.00 it will create tcb entries for users. But it says that is only for HP-UX 11.00, not 11.23 which I'm running. So why is my HP-UX 11.23 server exhibiting behaviour that only an HP-UX 11.00 box would exhibit?
Seems strange to me, but I can see your point too.
ideas?
Ta
- Andy
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP