I'm facing a problem while enabled services AD&LDAP at the same time:
- Using LDAP for SFTP connect e.g. in domain "domain1",
- Using AD for SMB shares e.g. in domain "domain2",
- After enabling AD I can't connect to SFTP with LDAP credentials. LDAP and AD users are same but use different domain like LDAP: DOMAIN1\steve AD: DOMAIN2\steve,
- /var/log/auth.log only says failed password,
- tried to debug connection on client host with sftp -vv can't see any difference,
- freenas-debug -l says difference (while AD activated) only in creating krb tickets.
- AD settings has unset Allow trusted Domains and Use default Domain
- sshd_config has:
Match Group freenas
ChrootDirectory /mnt/pool/data
ForceCommand internal-sftp
AllowTcpForwarding no
- Match group is from LDAP server
-Attaching /etc/pam.d/sshd config. It seems changing after enabling AD
Can u please provide me how to debug this connection problem ?
- Using LDAP for SFTP connect e.g. in domain "domain1",
- Using AD for SMB shares e.g. in domain "domain2",
- After enabling AD I can't connect to SFTP with LDAP credentials. LDAP and AD users are same but use different domain like LDAP: DOMAIN1\steve AD: DOMAIN2\steve,
- /var/log/auth.log only says failed password,
- tried to debug connection on client host with sftp -vv can't see any difference,
- freenas-debug -l says difference (while AD activated) only in creating krb tickets.
- AD settings has unset Allow trusted Domains and Use default Domain
- sshd_config has:
Match Group freenas
ChrootDirectory /mnt/pool/data
ForceCommand internal-sftp
AllowTcpForwarding no
- Match group is from LDAP server
-Attaching /etc/pam.d/sshd config. It seems changing after enabling AD
Can u please provide me how to debug this connection problem ?
Attachments
Last edited: