The UNIX and Linux Forums  
Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.

Go Back   The UNIX and Linux Forums > Top Forums > UNIX for Advanced & Expert Users
cron for local users without ldap request cron for local users without ldap request
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read


UNIX for Advanced & Expert Users Expert-to-Expert. Learn advanced UNIX, UNIX commands, Linux, Operating Systems, System Administration, Programming, Shell, Shell Scripts, Solaris, Linux, HP-UX, AIX, OS X, BSD.

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
user management - LDAP and local files scampi SuSE 1 02-05-2009 05:17 AM
shell script to print ldap users cmontr Shell Programming and Scripting 4 08-19-2008 02:21 PM
link LDAP-Users funksen UNIX for Advanced & Expert Users 3 02-19-2007 01:13 PM
LDAP request from unix into Active Directory tonlu UNIX for Advanced & Expert Users 0 11-07-2006 11:38 AM
Equivalent of ADMCHG for LDAP Users vipas UNIX for Advanced & Expert Users 0 12-16-2004 12:09 PM

 
English Japanese Spanish French German Portuguese Italian Dutch Swedish Russian Norwegian Hungarian Hebrew Danish Bulgarian Greek Powered by Powered by Google
 
LinkBack Thread Tools Search this Thread Rate Thread Display Modes
Prev Previous Post   Next Post Next
  #1 (permalink)  
Old 07-02-2009
jrodriguez365 jrodriguez365 is offline
Registered User
  
 

Join Date: Jul 2009
Posts: 3
cron for local users without ldap request
Hi,

I have configured a server in RHEL 5 to authenticate users via another ldap server.
but there are also local users that I would like that don't check ldap.

I have created a cronjob for a localuser (just present in /etc/passwd, /etc/shadow and /etc/group):

[root@fr1test01 root]# crontab -l -u localuser
* * * * * echo toto.`date` >> /tmp/localuser.cron.log

The cron is running properly (from /var/log/cron):

Jul 2 14:18:01 fr1test01 crond[26396]: (localuser) CMD (echo toto.`date` >> /tmp/localuser.cron.log)


I have also modified /etc/pam.d/crond to remove any reference to pam_ldap.so (removed the references to system_auth):

[root@fr1test01 root]# crontab -l -u localuser
* * * * * echo toto.`date` >> /tmp/localuser.cron.log
[root@fr1test01 root]# cat /etc/pam.d/crond
#
# The PAM configuration file for the cron daemon
#
#
auth sufficient pam_rootok.so
auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok
auth required /lib/security/$ISA/pam_deny.so
auth required pam_env.so
account required /lib/security/$ISA/pam_unix.so
session required pam_limits.so



But checking the ldap server logs, I can see that there are always requests to ldap for thiis local user:

[02/Jul/2009:14:18:01 +0000] conn=2945 op=-1 msgId=-1 - fd=46 slot=46 LDAP connection from 192.168.60.225:39877 to 192.168.60.67
[02/Jul/2009:14:18:01 +0000] conn=2945 op=0 msgId=1 - EXT oid="1.3.6.1.4.1.1466.20037"
[02/Jul/2009:14:18:01 +0000] conn=2945 op=0 msgId=1 - RESULT err=0 tag=120 nentries=0 etime=0, Start TLS request accepted.Server willing to negotiate SSL.
[02/Jul/2009:14:18:02 +0000] conn=2945 op=-1 msgId=-1 - SSL 256-bit AES-256
[02/Jul/2009:14:18:02 +0000] conn=2945 op=1 msgId=2 - BIND dn="cn=proxyagent,ou=profile,dc=domain,dc=prod" method=128 version=3
[02/Jul/2009:14:18:02 +0000] conn=2945 op=1 msgId=2 - RESULT err=0 tag=97 nentries=0 etime=0 dn="cn=proxyagent,ou=profile,dc=domain,dc=prod"
[02/Jul/2009:14:18:02 +0000] conn=2945 op=2 msgId=3 - SRCH base="dc=domain,dc=prod" scope=2 filter="(uid=localuser)" attrs=ALL
[02/Jul/2009:14:18:02 +0000] conn=2945 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[02/Jul/2009:14:18:02 +0000] conn=2945 op=3 msgId=4 - SRCH base="dc=domain,dc=prod" scope=2 filter="(&(objectClass=posixGroup)(memberUid=localuser))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[02/Jul/2009:14:18:02 +0000] conn=2945 op=3 msgId=4 - RESULT err=0 tag=101 nentries=0 etime=0
[02/Jul/2009:14:18:02 +0000] conn=2945 op=4 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=0
[02/Jul/2009:14:18:02 +0000] conn=2945 op=-1 msgId=-1 - closing from 192.168.60.225:39877 - A1 - Client aborted connection -
[02/Jul/2009:14:18:02 +0000] conn=2945 op=-1 msgId=-1 - closed.

Do you know if there is any way to avoid the client to check the ldap server for local users?. I have tried many configurations but it seems to be checking always ldap server...

Thanks
 

Bookmarks

Tags
cron, ldap, local, openldap, users

« XML parser to generate Tuxedo UD files | how to delete a large file in sco openserver 6 »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Threaded Mode Threaded Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -4. The time now is 08:52 AM.

The UNIX and Linux Forums - Learn UNIX and UNIX Commands RSS Feeds - Contact Us - The UNIX and Linux Forums - Learn UNIX and UNIX Commands - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited. Language Translations Powered by .
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
The UNIX and Linux Forums Content Copyright ©1993-2009. All Rights Reserved.Ad Management by RedTyger

Content Relevant URLs by vBSEO 3.2.0