Hello, I’ve just configured OpenSUSE with LDAP and TLS successfully. I followed the howto guides for adding the user and group modules with templates. But when going to add a user to LDAP, the LDAP user filter is not available. Any thoughts?
Thanks!
Personally I don’t have any because I don’t know much about LDAP but maybe posting the guides You used here will make it easier for someone with the knowledge to help You out 
Best regards,
Greg
Thanks for the response. I used the guide here Chapter 4. LDAP—A Directory Service
I’ve built the server a few times with the same results…not able to see LDAP option to create user or groups. Could I be missing a package?
I figured it out. SSSD is chosen by default which needs to be unchecked in the LDAP client configurations settings.
I’m really glad You figured it out. Thank You vey much for sharing the solution. I’m sure someone here will find it usefull.
Best regards,
Greg
I also have this problem after migration from OpenSuse 11.1 to 11.4. LDAP Authentication and the dependent Services (Postfix, Cyrus, Samba as a PDC and PostgreSQL) work properly but I cannot manage Users and Groups in Yast.
The “Set Filter” entry “LDAP Users” is simply not there.
Disabling SSSD in LDAP Client as suggested by jlansa2 did not help.
jlansa2, do you happen to have any more hints, I could try?
I have just checked that my LDAP Client settings correspond to those of Chapter 4. LDAP—A Directory Service
I just run yast User and Group Administration in debug mode with
Y2DEBUG=1 yast users
and I will try to find something suspicious tomorrow.
Now, I have got the “LDAP Users” entry there after I replaced the default installed /etc/nsswitch.conf
passwd: compat sss
group: compat sss
hosts: files mdns4_minimal [NOTFOUND=return] dns
networks: files dns
services: files
protocols: files
rpc: files
ethers: files
netmasks: files
netgroup: files nis
publickey: files
bootparams: files
automount: files nis
aliases: files
with this one from my 11.1 backup:
passwd: compat
group: files ldap
hosts: files mdns4_minimal [NOTFOUND=return] dns
networks: files dns
services: files ldap
protocols: files
rpc: files
ethers: files
netmasks: files
netgroup: files ldap
publickey: files
bootparams: files
automount: files nis
aliases: files ldap
passwd_compat: ldap
I just have to check if there any unexpected implications elsewhere.
Please forget my last post. Yes, there were bad side effects. No LDAP login worked after that.
The proper solution was to add only the line
passwd_compat: ldap
at the end of the default /etc/nsswitch.conf which now looks like this:
passwd: compat sss
group: compat sss
hosts: files mdns4_minimal [NOTFOUND=return] dns
networks: files dns
services: files
protocols: files
rpc: files
ethers: files
netmasks: files
netgroup: files nis
publickey: files
bootparams: files
automount: files nis
aliases: files
passwd_compat: ldap
svako_ragan is quite right.
I also had this issue with 11.4 and adding the passwd_compat: ldap line to nsswitch.conf was the fix.
Thanks!
Thanks for the answer, was driving me nuts until I came across this thread, as everywhere else it seemed to just be expected that the LDAP users filter would be there.
I do wonder if it’s a bug in 11.4 that some package should make this change when installed or configured or just because something hasn’t been selected somewhere else.