nsswitch.conf [NOTFOUND=return] prevents further processing of entries when server unavailable in RHEL 5

Solution Verified - Updated -

Issue

  • In /etc/nsswitch.conf under sudoers, "[NOTFOUND=return]" causes abortion of lookup on ldap failure

  • When the ldap server is unavailable, using the following rule the local files will never be consulted:

    sudoers: ldap [NOTFOUND=return] files

Environment

  • Red Hat Enterprise Linux (RHEL) 5

  • nss-ldap prior to version 253-42.el5

  • netgroup configured for ldap first in /etc/nsswitch.conf

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.