Bug 446642

Summary: gdm not working for non-local users
Product: [Fedora] Fedora Reporter: Javier Palacios <javiplx>
Component: gdmAssignee: jmccann
Status: CLOSED NOTABUG QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: low    
Version: 9CC: cschalle, nalin, rstrode
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-05-15 14:39:40 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
tail of /var/log/messages none

Description Javier Palacios 2008-05-15 14:27:54 UTC 
I have networked users, with nss-ldap for name resolution and kerberos for
authentication, but only local users are allowed to perform a graphical login,
even after they have performed a console login.

I have selinux enabled, in permissive mode
Comment 1 Javier Palacios 2008-05-15 14:27:54 UTC 
Created attachment 305491 [details]
tail of /var/log/messages
Comment 2 Ray Strode [halfline] 2008-05-15 14:34:51 UTC 
So an interesting part of the output is:

May 15 16:18:05 cool gdm-session-worker[12831]: GSSAPI Error: Unspecified GSS
failure.  Minor code may provide more information (No credentials cache found)
May 15 16:18:05 cool gdm-session-worker[12831]: nss_ldap: failed to bind to LDAP
server ldap://carpanta.home.local/: Local error
May 15 16:18:05 cool gdm-session-worker[12831]: nss_ldap: could not search LDAP
server - Server is unavailable

Nalin, any idea what could cause those types of messages?
Comment 3 Javier Palacios 2008-05-15 14:39:40 UTC 
Please apologize, as the problem does not really exists.

Due to unknown reasons, the nscd process was dead, so gdm was trying to read a
credentials file with permissions only for nscd user.