[KLUG Members] LDAP Authentication... No SU?

[Jim C]

Adam Williams wrote:

>>This has got to be something simple in my setup that I am just missing.
>>I have a local Mandrake net with LDAP authentication and on one client 
>>    
>>
>
>Excellent!
>
>  
>
>>box only local users can use the su command. Anybody know what this might be?
>>    
>>
>
>By "local" you mean those users who exist in in that clients NSS "files"
>(/etc/passwd, /etc/shadow, whatever, ....)  or do you mean those logged
>onto the local display/console (vs. those in on a pts via
>telnet/rlogin/ssh/etc...)?
>  
>
By 'local' I mean users stored locally, i.e. in /etc/passwd on the 
client box.
I never figured out what was wrong here.  I went around the issue by 
using the "Advanced" tab on the user setup part of the install to spec 
out an LDAP server for auth.
it bugs me not knowing though.  Think it might have been a permissions 
issue on /etc/ldap.conf, /etc/ldap.secret, /etc/pam.d/passwd, 
/etc/pam.d/system-auth, etc?
I've since created a backup script that tgz's all of these so that I can 
later extract them with the correct perms on another box.  Just in case.