ldap authentication on solaris 8 client

I have directory server 6.0 set up on solaris 9 system. I convert a Solaris 8 system to be a ldap client. However, I can use ssh to authentication against LDAP server. Here is the output I got:

# ssh -v user@localhost

SSH Version 1.2.27 [sparc-sun-solaris2.8], protocol version 1.5.

Standard version. Does not use RSAREF.

host: Reading configuration data /etc/ssh_config

host: ssh_connect: getuid 0 geteuid 0 anon 0

host: Allocated local port 1023.

host: Connecting to 127.0.0.1 port 22.

host: Connection established.

host: Remote protocol version 1.5, remote software version 1.2.27

host: Waiting for server public key.

host: Received server public key (768 bits) and host key (1024 bits).

host: Forcing accepting of host key for localhost.

host: Host '127.0.0.1' is known and matches the host key.

host: Initializing random; seed file /root/.ssh/random_seed

host: Encryption type: idea

host: Sent encrypted session key.

host: Installing crc compensation attack detector.

host: Received encrypted confirmation.

host: Trying rhosts or /etc/hosts.equiv with RSA host authentication.

host: Server refused our rhosts authentication or host key.

host: No agent.

host: Doing password authentication.

user@127.0.0.1's password:

Permission denied.

This is the pam.conf I use:

loginauth requisitepam_authtok_get.so.1

loginauth required pam_dhkeys.so.1

loginauth required pam_dial_auth.so.1

loginauth binding pam_unix_auth.so.1 server_policy

loginauth required pam_ldap.so.1

rlogin auth sufficientpam_rhosts_auth.so.1

rlogin auth requisitepam_authtok_get.so.1

rlogin auth required pam_dhkeys.so.1

rlogin auth binding pam_unix_auth.so.1 server_policy

rlogin auth required pam_ldap.so.1

rshauth sufficientpam_rhosts_auth.so.1

rshauth binding pam_unix_auth.so.1 server_policy

rshauth required pam_ldap.so.1

pppauth requisitepam_authtok_get.so.1

pppauth required pam_dhkeys.so.1

pppauth required pam_dial_auth.so.1

pppauth binding pam_unix_auth.so.1 server_policy

pppauth required pam_ldap.so.1

otherauth requisitepam_authtok_get.so.1

otherauth required pam_dhkeys.so.1

otherauth binding pam_unix_auth.so.1 server_policy

otherauth required pam_ldap.so.1

passwd auth binding pam_passwd_auth.so.1 server_policy

passwd auth required pam_ldap.so.1

cronaccount requiredpam_unix_account.so.1

otheraccount requisitepam_roles.so.1

otheraccount bindingpam_unix_account.so.1 server_policy

otheraccount requiredpam_ldap.so.1

othersession requiredpam_unix_session.so.1

otherpassword requiredpam_dhkeys.so.1

otherpassword requisitepam_authtok_get.so.1

otherpassword requisitepam_authtok_check.so.1

otherpassword requiredpam_authtok_store.so.1 server_policy

pppauth requiredpam_unix_auth.so.1

Not sure why Solaris 8 can't authentication with LDAP server. I have applied the patch 108993-67. Also, su and telnet can work with LDAP but not 'ftp' and 'ssh'.

Any ideas?

[3222 byte] By [xhza] at [2007-11-27 11:27:33]