Name Service Switch, an modular interface built in to the GNU C library that handles data retrieval from system databases, e.g., password, group, etc.
Questions tagged [nss]
76 questions
37
votes
3 answers
nsswitch.conf: is there a daemon I need to restart?
When I modify /etc/nsswitch.conf, is there an "nss" daemon I should restart? I am not referring to modules such as mdns & nis.
jldupont
- 1,779
- 4
- 23
- 27
26
votes
2 answers
Understand PAM and NSS
In the last days I have set up some Linux system with LDAP authentication and everything works fine, but there's still something I can't really understand regarding NSS and PAM, also after a lot of research.
Citing:
NSS allows administrators to…
ColOfAbRiX
- 980
- 2
- 11
- 22
7
votes
1 answer
How to add an existing key to the certutil key database
I have created an SSL keypair with OpenSSL. I uploaded the Certificate Signing Request to my SSL Certificate provider and got my certificate files.
I added my certificate and the required CA certificates to the certificate database using certutil.…
Steven Roose
- 175
- 1
- 1
- 6
7
votes
3 answers
CentOS PHP cURL NSS error 5938
Having a strange issue with cURL and PHP on a couple of CentOS boxes.
Locally, I'm running CentOS 6.3. Remote is CentOS 5.9
Locally, the box receives a request, scp's a file to the remote server, then performs a cURL request via PHP to the remote…
stormdrain
- 1,377
- 7
- 28
- 51
7
votes
3 answers
What is the `shadow` group used for?
On my Ubuntu 9.10 system, there's a shadow system group. There does not appear to be any user assigned to this group at all. The only files that I can find belonging to this group are /etc/shadow and /etc/gshadow.
I'm aware that the purpose of these…
Shtééf
- 1,225
- 2
- 12
- 19
6
votes
2 answers
Virtual users in sshd from a postgres database
I have a Postgresql database full of user accounts, and i would like to allow these user to access a server through ssh, using only public keys authentification.
So far, i have setup these parts on an Ubuntu Server:
libnss-pgsql2 to connect NSS to…
Bastien Abadie
- 61
- 3
5
votes
3 answers
sssd vs nslcd for RHEL-5/6
We have 50 RH-5 machines and 70 RH-6 machines. I am looking to decide what we should use for LDAP:
nscd/nslcd for all RH-5/RH-6 servers
nscd/nslcd for RH-5 servers, sssd for RH-6 servers
sssd for all RH-5/RH-6 servers
SSSD is available on both…
ujjain
- 3,963
- 15
- 50
- 88
4
votes
3 answers
yum/rpm Failed to initialize NSS library in chroot
I am performing a yum update from CentOS 7.4 to CentOS 7.5, when nspr and nss soft-softoken receive the updates, I am left with the following error:
yum update nspr
error: Failed to initialize NSS library
There was a problem importing one of the…
Arlion
- 590
- 1
- 4
- 17
4
votes
0 answers
How do I enable ciphers for NSS?
I am trying to use curl built with NSS (not built with OpenSSL) on Fedora 14 to connect to a webpage over https. The server to which I am connecting (example.com) uses the RC4-SHA cipher for its SSL. Whenever I try to connect to example.com, I get…
Cody
- 41
- 1
- 2
3
votes
1 answer
OpenLDAP client configuration headache in FreeBSD
I am using FreeBSD 7.2 as an NFS server, and as a client to an OpenLDAP server (which runs Debian etch). When users access their files on the NFS server, the users' UIDs are looked up in the ldap server and mapped to their usernames (via nsswitch).…
donatello
- 746
- 1
- 9
- 16
3
votes
3 answers
How to handle centralized user authentication without LDAP?
I'm attempting to create a centralized database for my users for my server and web accesses, so that I can allow those users to log in through ssh if they have access, and through my web services to view their account and system information.
I've…
josh
- 257
- 2
- 12
3
votes
1 answer
getent and ldapsearch results are inconsistent concerning the loginShell
I have a test that creates a user in LDAP with /bin/bash and I then modify the ldap attributes to /bin/noshell but the results from getent and ldapsearch are inconsistent for the shell.
This user does not exists in /etc/passwd.
When I do a ‘getent…
usa ims
- 361
- 1
- 7
- 14
3
votes
1 answer
getent passwd fails, getent group works?
I've almost got my AD integration working completely on my OpenSUSE 12.1 server. I have a OpenSUSE 11.4 system successfully integrated into our AD environment. (Meaning, we use LDAP to authenticate to AD directory via Kerberos, so we can login to…
slugman
- 123
- 2
- 4
- 7
3
votes
1 answer
Dealing with LDAP failure when using it for PAM/NSS?
I use a redundant pair of OpenLDAP servers for PAM auth and directory services via NSS. It's been 100% reliable so far, but nothing runs flawlessly forever.
What steps should I take now so I have a fighting chance of recovering from failure of the…
Insyte
- 9,314
- 2
- 27
- 45
3
votes
1 answer
The memcache was not invalidated by NSS responder
I was deleting a user.
# userdel u1
The memcache was not invalidated by nss responder.
But finally the user was deleted.
What does "The memcache was not invalidated by nss responder" means?
Fedora 34
Thanks
JellyTea
- 33
- 4