<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Wed, May 14, 2014 at 8:59 AM, Sam Davis <span dir="ltr"><<a href="mailto:aracthabar@gmail.com" target="_blank">aracthabar@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hello All,<br>
<br>
I have to admit, I really don't know where to begin on this. LDAP has never been my strong suit. We use LDAP authentication for most of our servers. We have one user for whom the client machines seem to forget about. In order to restore his account's functionality, I have to stop and then start nslcd. Sometimes the client machines do not even realize his account exists, sometimes it knows the account exists, but doesn't assign the correct group memberships. Other accounts are not impacted by this. Does anyone have any idea where to even begin looking into an issue like this?<br>
<br></blockquote><div><br></div><div>I suspect I might know a thing or two about the LDAP system in question...</div><div><br></div><div>To confirm:</div><div>1) Only 1 user is affected?</div><div>2) They are affected on multiple machines? Is it all machines?</div>
<div>3) Does it happen at the same time across all machines?</div><div>4) When it occurs on a machine, what does "getent passwd <username>" return? A password entry, an error, or nothing? Also might want to try "getent passwd <uid>" to see if the behavior differs.<br>
</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Sam<br>
______________________________<u></u>_________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org" target="_blank">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/<u></u>listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href="http://mail.ale.org/mailman/listinfo" target="_blank">http://mail.ale.org/mailman/<u></u>listinfo</a><br>
</blockquote></div><br><br clear="all"><div><br></div>-- <br>David Tomaschik<br>OpenPGP: 0x5DEA789B<br><a href="http://systemoverlord.com" target="_blank">http://systemoverlord.com</a><br><a href="mailto:david@systemoverlord.com" target="_blank">david@systemoverlord.com</a>
</div></div>