View Issue Details

IDProjectCategoryView StatusLast Update
0014160CentOS-7nss-pam-ldapdpublic2018-09-28 19:03
Status newResolutionopen 
Platformx86_64OSCentOSOS Version7.4.1708
Product Version 
Target VersionFixed in Version 
Summary0014160: Openldap/nslcd authenticating multiple times
DescriptionI had posted this on centos forum here but no help :(

Basic background:
3 openldap servers with multimaster replication and ppolicy pwdMaxFailure: 6.
When i try to authenticate to the linux box nslcd authenticates to all 3 master servers which return 3 failures, which give you 3 pwdFailureTime attributes for the account. So after typing the password incorrectly twice, the user get's locked out.

Please see the link for details

Currently nss-pam-ldapd is on version 0.8.13. Any change to apply the patch to the next centos nss-pam-ldapd release?

Thank you,
Steps To Reproduce* configure nslcd with 3 ldap servers
* failing authentication causes 3 pwdFailureTime attributes to appear
* after the second failure, openldap locks the user account
Additional InformationI had reported this to nss-pam-ldapd mailing list and this was the response:

The commit he mentions is here:

TagsNo tags attached.

Issue History

Date Modified Username Field Change
2017-11-21 21:27 davama New Issue
2018-09-28 19:01 davama Note Added: 0032826