Greetings! I have been pulling my hair out for a long time over this and wondering if anyone has seen something similar or has anything I can try.
It’s a bit confusing so I’ll try to lay it out so it’s not to crazy.
[b]The setup:
[/b]Leopard server hosing services including Podcast Producer, AFP, SMB and iCal
External OpenLDAP directory server
[b]The problem:
[/b]I have setup our test Leopard server and got services all working. While this server is setup as an OD master I can authenticate and use the services without problem. However, we have an external LDAP server using OpenLDAP. If I try to authenticate with any of these users from the external ldap server they are not able to login on any service except afp!!!
[b]What I’ve Done:
[/b]I’ve setup the server trying two methods: Magic triangle and augmented records. Both seem to yield the same thing. I can see the ldap users in workgroup manager and I can even nest them into groups on the local leopard ldap server. Some other possible info:
A log entry in the Podcast producer log dealing with authentication:
[error] [client xxx.xxx.11.122] mod_digest_apple: Unable to authenticate for URI “/podcastproducer/workflows” from user “testuser” for realm “PodcastProducer” at location “/LDAPv3/ldap.ourschool.edu” from the directory because user’s password type is not compatible with digest authentication.
If I edit /etc/smb.conf and delete the line : passdb backend = opendirectorysam guest windows users can successfully authenticate via smb.
On our old Tiger server, we had a magic triangle setup. That machine only ran SMB and AFP and it experienced the same problem with SMB and needing to delete that line.
I think these things may be related, but I’m not sure where to look next. Any help would be greatly appreciated! Thank you for any suggestions you can provide.
Steve
.
.
Comments are closed