so i'm trying to get solaris 8 to authenticate via ldap..

ldap works, i added a user test, can bind with the user, can do searches on the ldap with it...yet i cant logon with im figuring the problem lies somewhere in pam...

any insights or directions that i should be going would be appreciated.


my nsswitch.conf.

passwd: files ldap [NOTFOUND=return]
group: files ldap [NOTFOUND=return]

#passwd: files
#group: files

# You must also set up the /etc/resolv.conf file for DNS name
# server lookup. See resolv.conf(4).
hosts: files dns
ipnodes: files
# Uncomment the following line and comment out the above to resolve
# both IPv4 and IPv6 addresses from the ipnodes databases. Note that
# IPv4 addresses are searched in all of the ipnodes databases before
# searching the hosts databases. Before turning this option on, consult
# the Network Administration Guide for more details on using IPv6.
#ipnodes: files dns

networks: files
protocols: files
rpc: files
ethers: files
netmasks: files
bootparams: files
publickey: files
# At present there isn't a 'files' backend for netgroup; the system will
# figure it out pretty quickly, and won't use netgroups at all.
netgroup: files
automount: files
aliases: files
services: files
sendmailvars: files
printers: user files

auth_attr: files
prof_attr: files
project: files

my pam.conf

other auth sufficient
other auth required /opt/pam_ldap/current/lib/security/

other account sufficient
other account required /opt/pam_ldap/current/lib/security/

other session required /opt/pam_ldap/current/lib/security/

other password required
other password required /opt/pam_ldap/current/lib/security/

my user schema

dn: uid=test,ou=People,dc=foobar,dc=com
objectclass: account
objectclass: posixAccount
objectclass: shadowAccount
objectclass: inetLocalMailRecipient
cn: Test User
uid: test
userPassword: {MD5}ooY25P8292KnU:12402
loginShell: /bin/tcsh
uidnumber: 5500
gidnumber: 100
homeDirectory: /
gecos: Test User