Highest Voted 'pam' Questions - Server Fault Stack Exchange

5

votes

4 answers

How to increase max FD limit for a daemon process running under a headless user?

To increase the FD limit for a daemon process running under a headless user on a Ubuntu Linux machine we did following changes in /etc/security/limits.conf soft nofile 10000 hard nofile 10000 We also added session required pam_limits.so in…

asked Dec 28 '12 at 15:28

Ameliorator

181
2
6

5

votes

2 answers

Linux ldap authentication, pam_filter ignored

I've set up linux client authentication via ldap, it works. I want to control user's access to several services by adding or removing different OUs for accounts. E.g., if user is allowed to login linux machines, it's ou must contain "linux". If this…

linux ubuntu ldap pam filter

asked Nov 15 '12 at 09:14

Alexander

163
1
6

5

votes

2 answers

Nginx with PAM authentication through pam_script

Have anyone set up such a configuration? It's not working for me. I've installed nginx-extras on Ubuntu 12.04 (it's built with PAM module), and added to site config: location ^~ /restricted_place/ { auth_pam "Please specify login…

nginx authentication pam

asked Sep 13 '12 at 01:40

Envek

223
3
7

5

votes

1 answer

pam_tty_audit and non privileged users

I'm working on a cents 6.3 box and am trying to log all commands executed from a bash shell and came across pam_tty_audit. I've added the appropriate line to my /etc/pam.d/system-auth file: session required pam_tty_audit.so enable=* The…

centos pam tty auditd

asked Aug 31 '12 at 20:13

Jeff

51
2

5

votes

1 answer

SMTP authentication failure + PAM-MySQL cannot authenticate

I am building a mail server using Postfix, and set up the authentication to check against a database set-up using Postfixadmin. I can authenticate via Courier IMAP okay, as it can authenticate against the hashed password properly, but I am…

smtp pam postfix saslauthd

asked Aug 22 '12 at 03:31

Bez Hermoso

171
1
6

5

votes

1 answer

PAM unable to dlopen(/lib64/security/pam_fprintd.so) causing CentOS/Redhat server to crash

CentOS 6, Parallels PLESK 10.4, Apache One of my servers went down over the weekend much to my dismay. On the day and time it occurred, my log errors/messages end with this - /var/log/secure: Jul 29 03:53:15 u######## su: PAM adding faulty module:…

centos centos6 pam server-crashes

asked Aug 01 '12 at 14:53

RCNeil

615
3
9
17

5

votes

2 answers

Samba: read-only LDAP + additional local users

My server has access to a read-only LDAP where information about 99% of user accounts will reside. On my server I want to configure Samba to use LDAP for authentication. Now and then there will be some extra users that do not have an account on…

ldap samba pam

asked Jul 22 '12 at 23:29

Roman Byshko

254
2
13

5

votes

6 answers

How to customize telnet login prompt on linux

When I run login command on debian, I get: hostname login: _ on RHEL5, Solaris or HP-UX I get: login: _ I need to be able to customize login: and password: prompts it on a Linux box. I can recompile the package, but is there a better (easier) way…

linux configuration authentication pam telnet

asked Oct 07 '11 at 10:49

Michał Šrajer

856
5
11

5

votes

2 answers

VsFTPd - LDAP - PAM

I am trying to configure a VsFTPd server to authenticate agains an LDAP server. It may be easy, but since it is the first time that I am using both LDAP and PAM, I have some difficulties. VsFTPd runs on an Ubuntu Server 11.04 and the LDAP is…

ftp ldap openldap pam vsftpd

asked Oct 05 '11 at 08:27

Totor

95
1
3
9

5

votes

2 answers

How to handle large number of users in SELinux?

A while back we started authenticating users on our Linux servers against Active Directory. As far as the actual authentication part goes, things are working great. However, one of the side effects is that Linux thinks (sort of correctly) that it…

linux pam selinux

asked Mar 07 '11 at 16:55

Cooper

272
2
8

5

votes

2 answers

/etc/pam.d/login vs. /etc/pam.d/system-auth

I want to enforce password complexity on my RH system (local authentication) and have discovered that I need a pam module line something similar to this: password required pam_cracklib.so dcredit=-1 ucredit=-1 ocredit=-1 lcredit=0 minlen=8 My…

linux security pam

asked Jun 05 '09 at 20:38

oneodd1

608
1
6
11

5

votes

2 answers

Access control to 100's of LAMP box via LDAP

This is every SysAdmin's nightmare of things to do. Basically we want to control who has access to which hosts. As simple it may sound, the problem is to find a scalable and low maintenance(mgmt. overhead) solution. We use bcfg2 for Config Mgmt much…

ldap openldap pam

asked Jul 13 '10 at 17:27

Prashanth Sundaram

451
4
10

5

votes

2 answers

How to display SSH banner at login, but only for password authentication

I have a warning message that is displayed to a user after they enter their username to log in to our Linux servers. I only want to display this message for password authentications, and not when keys are used. It should only show to a user who is…

linux ssh pam sles banner

asked Jun 09 '10 at 13:19

Banjer

3,974
12
41
47

5

votes

2 answers

SSH public key authentication with google authenticator still asks for password

I'm trying to enable 2FA with ssh using libpam-google-authenticator. Not all users need authenticator enabled. Everybody uses ssh public keys, and nobody has a password. I'm running Debian buster, and I've also tried libpam-google-authenticator from…

debian pam google-authenticator two-factor

asked Aug 05 '21 at 07:28

Hamish Moffatt

201
2
11

5

votes

2 answers

configure pam with ssh to do 2 factor authentication

I am trying to configure ssh with my custom radius server for authentication. So what i want is, First it should authenticate with current ssh login (unix login) and then prompt user for second password for radius. I am setting up /etc/pam.d/sshd…

linux ssh pam

asked Jan 22 '10 at 13:46

Jigar Shah

159
1
5

Questions tagged [pam]