Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [pam]

Pluggable authentication modules, a flexible framework for configuring authentication, most commonly the login component of Linux systems, but used in other components and operating systems.

752 questions
0
votes
1 answer

Chrooted user logged out immediately after login

I am trying to use chroot to setup a user who can login via ssh and limit access to the /var/www directory. The server is on AWS running Amazon Linux 64-bit, openssh installed. I used ssh-keygen to generate the keys. Before I edit the sshd_config…
Complectia
  • 1
  • 2
0
votes
1 answer

PAM tty auditing on CentOS 6.4

I am trying to implement pam tty auditing using http://jaredrobinson.com/blog/linux-tty-auditing/ but it is not working for me. Can some one tell me that any thing else apart from "session required pam_tty_audit.so enable=*" entry in…
haroon_aut
  • 51
  • 1
  • 3
0
votes
1 answer

Can sssd-ldap authenticate non-posix users?

I am migrating a sealed MSA from using pam_ldap to pam_sss (sssd-ldap). However, pam_sss seems to have having trouble authenticating users without uidNumbers. I had thought changing ldap_user_object_class from posixAccount to top would fix this,…
84104
  • 12,905
  • 6
  • 45
  • 76
0
votes
1 answer

Create alias for UNIX username in LDAP for DB2

I want to use LDAP data for the authentication process in DB2. I have already configured DB2 via PAM to retrieve the information of the NIS server that is in the ActiveDirectory. It works perfect with usernames that have 8 characters or less. I…
AngocA
  • 111
  • 5
0
votes
1 answer

Pam-Mysql “Can't initialize threads: error 11”

Inside a Debian OpenVZ container, I have 2 OpenVPN servers (udp on port 53 and tcp on port 443). The authentication is based on Pam-Mysql. Inside my OpenVPN conf file I have: [...] plugin /etc/openvpn/openvpn-auth-pam.so openvpn [...] At a certain…
PJ Bergeron
  • 363
  • 4
  • 15
0
votes
1 answer

enforce password length on ubuntu with pam_cracklib

I was trying to enforce password length to a minimum of 10 using pam_cracklib. here is my /etc/pam.d/common-password password requisite pam_cracklib.so retry=3 minlen=10 difok=3 dcredit=1 ocredit=1 ucredit=1 password …
Ajo Augustine
  • 1,262
  • 4
  • 16
  • 21
0
votes
2 answers

Red Hat 6.5 - Login Errors After Security Hardening

I followed the information below, however, it is strangely blocking me from entering a password upon entering the login prompt on the server: To configure the system to lock out accounts after a number of incorrect login attempts and require an…
kjbradley
  • 11
  • 1
  • 3
0
votes
1 answer

Run pam_exec after home directory creation CentOS 6

How can I make a pam_exec script in /etc/pam.d/sshd run after the home directory has been created? I am on CentOS 6.5 and use network accounts via PBIS / Likewise-Open. Right now, if a new user logs in the script runs, then their home directory…
GeneBean
  • 323
  • 1
  • 4
  • 11
0
votes
1 answer

User authentication; PAM or Radius?

At college I'm part of a group of students that keep a server infrastructure running for the students. Lately we've been having a lot of trouble with the servers, and we decided that it's probably better to start from scratch and reinstall…
RobinJ
  • 187
  • 1
  • 3
  • 14
0
votes
1 answer

Authenticate Radius user using pam and ssh

I am able to authenticate radius users using radius server+pam+ssh with creating local user with blank password in linux. Is it possible to authenticate radius users without creating users in local machine with blank password? /etc/pam.d/ssh file as…
user3184706
  • 110
  • 1
  • 2
  • 10
0
votes
1 answer

PAM exec stdout issue

I am having an issue with a dead simple python script; called with pam_exec. I added a line at the end of that file /etc/pam.d/common-session : session optional pam_exec.so /bin/python /usr/local/bin/pam_notify_python.py The pam_notify_python.py…
Loris1634
  • 101
  • 1
  • 2
0
votes
1 answer

Can't login with KDM and SSSD but works fine from console

I have LDAP authentication set up with SSSD and I can login fine through console and ssh. However when I try to login through KDM it just says authentication failure... More specifically: Jan 9 10:29:11 adams20420 sssd[be[default]]: Failed to set…
Drakkainen
  • 123
  • 3
  • 9
0
votes
1 answer

Users Password does not reset after successful login at the console but works fine with SSH

The title says it all. I have my unsuccessful login attempts set to three. I purposefully fail logging in 2x, then when I SSH into the box successfully the 3rd time my count drops back to zero; exactly what should happen. But at the console I get…
jiveturkey
  • 153
  • 1
  • 9
0
votes
1 answer

system authentication and radius authentication

I am using CentOS 6.3 and want to enable ssh RADIUS authentication along with Centos system Authentication. Right now my server is firstly authenticated with RADIUS server. And after system Authentication. I want the server to authenticate with unix…
abdulshemeer
  • 1
  • 1
0
votes
2 answers

PAM: auth: pam_unix(dovecot:auth): authentication failure;

We have opnldap setup on our ubuntu server, and were getting this message for a user: auth: pam_unix(dovecot:account): account has expired (account expired) Sep 3 19:05:03 auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0…
NinjaCat
  • 576
  • 1
  • 9
  • 21
1 2 3
50 51