On 05/02/2010, at 3:16 AM, Sean Carolan wrote:
>> What is listed in your /etc/nsswitch.conf for passwd, shadow and group?
>
> Here's what I have on one of the clients:
>
> passwd: files ldap
> shadow: files ldap
> group: files ldap
>
>> If you do not have an entry for 'files' then the local /etc/{passwd,shadow,group} files will not be searched.
>
> Should it not try "files" first? I'm still seeing that when the LDAP
> server is down, I can't log onto the client machines at all. Logging
> in as root works, but logging in as a normal user doesn't. Any
> suggestions?
Yes, it should...
This may be a silly question, but -- if you remove/disable the LDAP config, can you log in with the local account?