[nzlug] Help: Trouble after LDAP + NSS configuration
Cliff Pratt
enkidu at cliffp.com
Thu Feb 14 09:00:02 NZDT 2008
Roland Hill wrote:
> Hi,
>
> I've got myself into a pickle :-(
>
> Having (I thought) correctly configured LDAP + NSS, then rebooting (had
> a kernel update), I'm stuck with:
>
> udevd: nss_ldap: Can't contact server xxxxxx
>
> This message repeats itself and goes no further.
>
> Seems this is a known bug, but I hadn't depolyed the solution (see below)
>
> -------------------8<------------------------------------------
> The problem is caused by the usage of the non existing group 'nvram' in
> /etc/udev//rules.d/40-permissions.rules:
> ...
> KERNEL=="nvram", GROUP="nvram"
> ...
>
> When udev starts, is looks up 'nvram'. While 'nvram' could not be found
> in /etc/group NSS tries to connect the ldap server. As result the boot
> sequence stops.
>
> To fix this problem is very easy: Add the local group 'nvram' to
> /etc/groups
>
> After that booting with nss_ldap and bind_policy hard works without any
> problem.
> ---------------------->8----------------------------------------
>
> FWIW, here is a link as well:
>
> https://launchpad.net/distros/ubuntu/+source/libns s-ldap/+bug/51315
>
> Can somebody advise me how I can use a live CD (I assume) to either
> access the pam.d files and revert their settings, or implement the fix?
>
> I'm stuck......bug**r!
>
At the grub boot prompt hit any key, hit 'e' for edit and select the
'kernel' line in the list of grub commands. Hit 'e' for edit again, and
add 'single' to the end of the line. Hit 'b' to boot and you will be in
single user mode. Edit '/etc/groups'.
No need of a 'live' CD. Actually, some of the steps above may be
slightly different since I'm working from memory.
Cheers,
Cliff
More information about the NZLUG
mailing list