IBM Support

LDAP authentication setup without error but users can not login to database on PureData System for Analytics

Troubleshooting


Problem

LDAP authentication parameters are correct. No errors during authentication setup. When LDAP users attempt to login the login fails with error=LDAP authentication failed for user

Symptom

User logins fail with error error=LDAP authentication
failed for user on inital setup of LDAP

Cause

In the configuration file /etc/pam_ldap.conf on RedHat 6.x and /etc/ldap.conf on RedHat 5.x appliances has a statement of uri ldap://127.0.0.1/ that is not commented out by default.

This statement will cause the appliance to attempt to authenticate against itself. The authentication will fail as there is not an LDAP server running on the appliance.

Environment

Netezza

Diagnosing The Problem

To find out if this is the issue , perform the following test..

# egrep -v '^(#|$)' /etc/ldap.conf (on RedHat 5.x appliance)

or

# egrep -v '^(#|$)' /etc/pam_ldap.conf (on RedHat 6.x appliance)

If the statement shows up in the output it needs to be commented out.

If the statement does not show up in the output.. further checking must be done.

Resolving The Problem

On RedHat 6.x based appliances edit the /etc/pam_ldap.conf file

On RedHat 5.x based appliances edit the /etc/ldap.conf file

You can use the command # cat /etc/redhat-release to check the version of RedHat.

Edit the file with vi editor..

# vi /etc/pam_ldap.conf

Find the un-commented uri statement.. it is usually the fourth statement from the bottom of the file.

Add a hash tag # in front of the statement. Save the file. Test the logins.

If the logins work at this point , the change needs to be made permanent. Run the following commands..

# cp /etc/pam_ldap.conf /nz/data/config/pam_ldap.conf

# chown nz:nz /etc/pam_ldap.conf /nz/data/config/pam_ldap.conf

The change is now permanent.

Please note, that if the default authentication is set to local, the steps will need to be done again.

[{"Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSULQD","label":"IBM PureData System"},"ARM Category":[{"code":"","label":""}],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"1.0.0"},{"Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSUSQ8","label":"IBM Netezza Analytics"},"ARM Category":[{"code":"","label":""}],"Platform":[{"code":"","label":"Platform Independent"}],"Version":"All Versions"}]

Document Information

Modified date:
03 June 2022

UID

swg21987931

Page Feedback