If I just try to "su" to an LDAP user, I get the following error:
- Code: Select all
mona> su firstname.lastname@example.org
su: can't run /sbin/nologin: No such file or directory
However, the user has a loginShell attribute in LDAP (set to /bin/sh). It appears something in the Synology LDAP setup is ignoring this mapping. I thought there might be some attribute filtering going on in /usr/syno/etc/nslcd.conf, but "loginShell" doesn't appear there.
Has anyone managed to get ssh logins of LDAP users working, and if so, what did you do?