Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- uri ldap://DC1 ldap://DC2
- base dc=corp,dc=example,dc=com
- [libdefaults]
- default_realm = corp.example.com
- clockskew = 300
- dns_lookup_kdc
- # default_realm = EXAMPLE.COM
- [realms]
- corp.example.com= {
- kdc = corp.example.com
- default_domain = corp.example.com
- kpasswd_server = corp.example.com
- admin_server = corp.example.com
- }
- # EXAMPLE.COM = {
- # kdc = kerberos.example.com
- # admin_server = kerberos.example.com
- # }
- [logging]
- kdc = FILE:/var/log/krb5/krb5kdc.log
- admin_server = FILE:/var/log/krb5/kadmind.log
- default = SYSLOG:NOTICE:DAEMON
- [domain_realm]
- .corp.example.com = corp.example.com
- .corp = corp.example.com
- [appdefaults]
- pam = {
- ticket_lifetime = 1d
- renew_lifetime = 1d
- forwardable = true
- proxiable = false
- minimum_uid = 1
- external = sshd
- use_shmem = sshd
- clockskew = 300
- retain_after_close = false
- }
- search corp.example.com
- nameserver 10.0.0.3
- nameserver 10.1.0.3
- Nov 30 09:04:56 linux_client nscd: nss_ldap: failed to bind to LDAP server ldap://ad3: Can't contact LDAP server
- Nov 30 09:04:59 linux_client sshd[15585]: nss_ldap: failed to bind to LDAP server ldap://ad3: Can't contact LDAP server
- Nov 30 08:50:19 linux_client sshd[15242]: Accepted keyboard-interactive/pam for jim from 10.0.0.231 port 61288 ssh2
- Nov 30 08:52:02 linux_client sshd[15284]: nss_ldap: could not search LDAP server - Server is unavailable
- Nov 30 08:53:09 linux_client sshd[15284]: pam_unix2(sshd:auth): conversation failed
- Nov 30 08:53:16 linux_client sshd[15284]: error: ssh_msg_send: write
- Nov 30 08:53:26 linux_client sshd[15284]: pam_krb5[15284]: authentication fails for 'jim' (jim@corp.example.com): Authentication failure (Cannot read password)
- Nov 30 08:53:26 linux_client sshd[15284]: error: ssh_msg_send: write
- Nov 30 08:56:02 linux_client sshd[15289]: nss_ldap: could not search LDAP server - Server is unavailable
- Nov 30 08:56:27 linux_client sshd[15289]: pam_krb5[15289]: authentication succeeds for 'jim' (jim@corp.example.com)
- Nov 30 08:57:12 linux_client sshd[15289]: nss_ldap: could not search LDAP server - Server is unavailable
- Nov 30 08:57:18 linux_client sshd[15289]: _rebind_proc
- Nov 30 08:57:31 linux_client sshd[15289]: _rebind_proc
- Nov 30 08:57:34 linux_client sshd[15289]: _rebind_proc
- Nov 30 08:57:34 linux_client sshd[15289]: pam_ldap: ldap_result Timed out
- Nov 30 08:57:34 linux_client sshd[15289]: error: ssh_msg_send: write
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement