vsftpd + Suse11 + Win 2003 AD

[vihar1]

Hello All,

I am busy with creating an FTP server on a Suse 11 which authenticates users via a Win2003 Active Directory. As this is just a test environment, these machines are run by VMware Infrastructure 2.

Suse is joined into the Win domain.

I am facing two issues:

- domain users can not log in via SSH
- vsftpd does not work, returns 530 Login failed.

What I would like to is that vsftpd look for users from AD and users can log in via SSH.

When trying to log in with root I have to wait several seconds before entering password. It seems that it tries to use pam when authenticating.

Code:

Aug 31 18:10:42 suse11a sshd[3604]: Accepted keyboard-interactive/pam for root from 192.168.1.200 port 52653 ssh2

Below are error messages from syslog. When trying to log in via vsftp, the same errors are given.

Code:

suse11a:~ # tail -f /var/log/messages
Aug 31 18:00:56 suse11a nscd: nss_ldap: could not search LDAP server - Server is unavailable
Aug 31 18:00:56 suse11a sshd[3623]: Invalid user win\\u1 from 192.168.1.200
Aug 31 18:00:57 suse11a nscd: nss_ldap: could not search LDAP server - Server is unavailable
Aug 31 18:01:02 suse11a sshd[3627]: Accepted keyboard-interactive/pam for root from 192.168.1.200 port 52471 ssh2
Aug 31 18:01:22 suse11a sshd[3626]: pam_ldap: ldap_search_s Operations error
Aug 31 18:01:22 suse11a sshd[3623]: error: PAM: User not known to the underlying authentication module for illegal user win\\u1 from sto
Aug 31 18:01:22 suse11a sshd[3623]: Failed keyboard-interactive/pam for invalid user win\\u1 from 192.168.1.200 port 52469 ssh2
Aug 31 18:01:22 suse11a nscd: nss_ldap: could not search LDAP server - Server is unavailable
Aug 31 18:01:57 suse11a kernel: ip_tables: (C) 2000-2006 Netfilter Core Team
Aug 31 18:02:26 suse11a nscd: nss_ldap: could not search LDAP server - Server is unavailable

[raghaven.kumar]

Maybe you have to disable pam with this

Code:

local_enable=NO

in vsftpd.conf