[TriLUG] LDAP Authentication Question

Sean Leinart sleinart at fscarolina.com
Wed Dec 3 10:16:25 EST 2008


-----Original Message-----
From: trilug-bounces at trilug.org [mailto:trilug-bounces at trilug.org] On
Behalf Of Matt Pusateri
Sent: Tuesday, December 02, 2008 2:42 PM
To: Triangle Linux Users Group General Discussion
Subject: Re: [TriLUG] LDAP Authentication Question


On Dec 2, 2008, at 2:31 PM, Sean Leinart wrote:

> Would it help to see the contents of that file?
> There doesn't appear to be any system-discernable information 
> contained within.
>
> Sean


Generally the more information provided, the less chance people will
just guess at the unknowns :)
-- 
TriLUG mailing list        :
http://www.trilug.org/mailman/listinfo/trilug
TriLUG FAQ  : http://www.trilug.org/wiki/Frequently_Asked_Questions


Here are the contents of the /etc/pam.d/system-auth file on one of the
systems in question.

#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      /lib/security/$ISA/pam_env.so
auth        sufficient    /lib/security/$ISA/pam_unix.so likeauth nullok
auth        sufficient    /lib/security/$ISA/pam_ldap.so use_first_pass
auth        required      /lib/security/$ISA/pam_deny.so

account     required      /lib/security/$ISA/pam_unix.so broken_shadow
account     sufficient    /lib/security/$ISA/pam_localuser.so
account     sufficient    /lib/security/$ISA/pam_succeed_if.so uid < 100
quiet
account     [default=bad success=ok user_unknown=ignore]
/lib/security/$ISA/pam_ldap.so
account     required      /lib/security/$ISA/pam_permit.so

password    requisite     /lib/security/$ISA/pam_cracklib.so retry=3
password    sufficient    /lib/security/$ISA/pam_unix.so nullok
use_authtok md5 shadow
password    sufficient    /lib/security/$ISA/pam_ldap.so use_authtok
password    required      /lib/security/$ISA/pam_deny.so

session		optional	  /lib/security/$ISA/pam_mkhomedir.so
session     required      /lib/security/$ISA/pam_limits.so
session     required      /lib/security/$ISA/pam_unix.so
session     optional      /lib/security/$ISA/pam_ldap.so 



More information about the TriLUG mailing list