Highest Voted 'pam' Questions - Server Fault Stack Exchange

4

votes

1 answer

Fedora 21 pam_sss authentication failure - permission denied

We have configured a OpenLDAP server which is working fine. FreeBSD, Debian, and a WordPress plugin authenticate with no problems. We are configuring Fedora 21 with pam_sss, but we get the following error in /var/log/secure: Mar 1 00:15:00 www…

asked Mar 01 '15 at 06:36

Joel May

189
1
1
7

4

votes

1 answer

Why is sshd engaging PAM still?

Background/Behavior is: if you ssh to box via and GSSAPI/Kerberos succeeds and you have a local user in /etc/passwd, you login fine per below PAM config. All Good there. But if you don't have a local user in /etc/passwd but you can get a…

linux ssh kerberos pam gssapi

asked Feb 13 '15 at 05:18

jouell

621
1
5
20

4

votes

2 answers

How do PAM advanced options work, exactly?

I've been reading everything I can find on PAM (e.g. http://wpollock.com/AUnix2/PAM-Help.htm), however I'm still confused about how precisely the advanced options are supposed to work. For example, every reference says this: Each of the four…

linux authentication pam

asked Nov 13 '14 at 22:42

pgoetz

465
1
8
16

4

votes

0 answers

Ubuntu server + Samba + PAM + Apple OpenDirectory

Due to various reasons, we are looking to migrate our file servers from OS X Server 10.9 over to a true Samba implementation running on Ubuntu 14.04LTS. We have Ubuntu up and running with Samba installed, and even have PAM setup to authenticate…

linux ldap samba pam opendirectory

asked Nov 13 '14 at 17:04

quickthyme

151
4

4

votes

1 answer

Kerberos-PAM authentication failure: pam or pre-authentication

kinit -p 'username' works -- no problem with the setup of the Kerberos realm. I can't get the login from the GUI to work, however. Client auth.log: pam_krb5(gdm3:auth): user authenticated as @ gkr-pam: error looking up user…

debian kerberos pam

asked Oct 01 '14 at 06:39

Aroll605

161
1
4

4

votes

1 answer

Trying to script rsync using pam_exec

I'm trying to write a bash script that will execute rsync when called by pam_exec. I've tried a couple different ways, and I'm not sure what I'm doing wrong. When I try to run the script at login by adding session optional pam_exec.so…

bash rsync pam

asked Jun 28 '13 at 21:21

Ricky-Rose

43
5

4

votes

1 answer

Weird stuff in in my /var/log/auth.log

I just check my logs on my deed server, I spotted some weird log in the auth.log: Jun 17 22:27:01 mutualab CRON[16249]: pam_unix(cron:session): session opened for user user by (uid=0) Jun 17 22:27:01 mutualab CRON[16249]: pam_unix(cron:session):…

ubuntu logging authentication ubuntu-10.04 pam

asked Jun 17 '12 at 20:34

x_vi_r

310
2
4
15

4

votes

2 answers

How are services mapped to the files in /etc/pam.d?

How does pam decide which files in /etc/pam.d to use depending on whether a user logs in via ssh, locally, a serial console, etc?

linux security authentication pam

asked Jul 06 '09 at 17:42

joeforker

2,399
4
26
35

4

votes

2 answers

pam_unix(sshd:auth): auth could not identify password for [admin] - sshd[6968]?

Why is the following log produced? pam_unix(sshd:auth): auth could not identify password for [admin] - sshd[6968] Is it because of a timeout, or is there some other reason?

ssh pam

asked Jan 04 '12 at 05:55

soma sekhar

165
1
1
5

4

votes

2 answers

Google Authenticator PAM for specific users

My current sshd PAM config: #%PAM-1.0 auth include system-auth account required pam_nologin.so account include system-auth password include system-auth session optional pam_keyinit.so force revoke session …

authentication pam google-authenticator password

asked Aug 04 '11 at 18:49

ceejayoz

32,910
7
82
106

4

votes

1 answer

Force SHA when user changes LDAP password using passwd

I'm trying to setup PAM/LDAP so that when a logged in SSH user changes their password using passwd, it encrypts the password with SHA1 before updating the LDAP entry. I have this # /etc/ldap.conf ... rootbinddn cn=Manager,dc=ourdomain,dc=com rootpw…

centos ssh ldap pam

asked Jun 28 '11 at 18:54

Jake Wilson

8,814
29
97
125

4

votes

1 answer

vsftpd with pam_winbind.so

I'm trying to setup vsftpd to use logins from our domain. I want the ftp users to be able to login using their active directory username/password and have be able to have full access to /media/storage/ftp/username. I setup pptp using winbind and it…

ftp pam winbind vsftpd

asked Jun 22 '11 at 21:36

David

41
3

4

votes

3 answers

Linux Remote Desktop with username/password authentication

The environment at the moment is a selection of windows and Linux (RHEL 4/5 and SLES 10/11) whereby VNC access to the windows boxes works using ultravnc and providing a username/password combination to authenticate. What is desirable is to use VNC…

linux authentication vnc pam

asked Jan 27 '11 at 03:36

Matt Delves

483
2
6
12

4

votes

4 answers

/usr/bin/sshd isn't linked against PAM on one of my systems. What is wrong and how can I fix it?

I'm using AD as my user account server with ldap. Most of the servers run with UsePam yes except this one, it has lack of pam support on sshd. root@linserv9:~# ldd /usr/sbin/sshd linux-vdso.so.1 => (0x00007fff621fe000) libutil.so.1 =>…

ubuntu ssh pam

asked Jan 11 '11 at 15:46

Marc Riera

1,637
4
23
38

4

votes

4 answers

How can I require a certain group of users to login via LDAP while letting others use either LDAP or local login?

I have set up my system to allow either LDAP or the local password for login. I did this by adding "password sufficient pam_ldap.so" to PAM and calling "pam_unix2.so" afterwards. However I would like to require a certain group of users to…

ldap login pam

asked Oct 29 '10 at 17:46

Arun Persaud

198
1
5

Questions tagged [pam]