Bug 684811

Summary: authconfig --enableldapauth does not bring in and configure needed packages
Product: Red Hat Enterprise Linux 6 Reporter: Orion Poplawski <orion>
Component: anacondaAssignee: Anaconda Maintenance Team <anaconda-maint-list>
Status: CLOSED NOTABUG QA Contact: Release Test Team <release-test-team>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.0   
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-03-14 15:22:02 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Orion Poplawski 2011-03-14 15:16:18 UTC 
Description of problem:

Installed system with:

authconfig --enablemd5 --enableshadow --enableldap --enableldapauth --ldapserver=ldap.cora.nwra.com --ldapbasedn=dc=nwra,dc=com --enableldaptls --ldaploadcacert=http://www.cora.nwra.com/cgi-bin/getca.pl

After install, I see:

Mar 14 08:50:01 vmsl6 crond[16211]: PAM unable to dlopen(/lib64/security/pam_ldap.so): /lib64/security/pam_ldap.so: cannot open shared object file: No such file or directory
Mar 14 08:50:01 vmsl6 crond[16211]: PAM adding faulty module: /lib64/security/pam_ldap.so

and ldap users cannot log in.  Installing nss-pam-ldapd and configuring
/etc/nslcd.conf with:

uri ldap://ldap.cora.nwra.com/
base dc=nwra,dc=com
ssl start_tls
tls_cacertdir /etc/openldap/cacerts

fixes.

Version-Release number of selected component (if applicable):
13.21.82
Comment 1 Chris Lumens 2011-03-14 15:22:02 UTC 
Yeah, the authconfig command has never worked like that.  If you want to use ldap, you need to add the packages to your %packages section too.  We simply pass the authconfig arguments straight through to the program.