Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

kerberos / pam and su login
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
mikeizm
n00b
n00b


Joined: 28 Apr 2005
Posts: 5
PostPosted: Fri Jul 22, 2005 5:15 pm    Post subject: kerberos / pam and su login Reply with quote
Hi,
I have been able to get kerberos ssh logins working on my linux machine but when I try to su in locally, it asks me for root password for the Kerberos server that we have here.

Code:
mike@guru mike $ su -
Password for root@SOME.EDU:


this is what /etc/pam.d/sshd looks like

Code:

auth            sufficient      pam_stack.so service=system-auth
auth            required        pam_nologin.so
auth            required        pam_unix.so     use_first_pass
auth            sufficient      pam_krb5.so     use_first_pass
account         required        pam_stack.so    service=system-auth
password        required        pam_stack.so    service=system-auth
session         required        pam_stack.so    service=system-auth
session         required        pam_permit.so
session         optional        pam_console.so


/etc/pam.d/system-auth

Code:

auth       required     /lib/security/pam_env.so
auth       sufficient   /lib/security/pam_unix.so use_first_pass nullok
auth       sufficient   /lib/security/pam_krb5.so
auth       required     /lib/security/pam_deny.so

account    required     /lib/security/pam_unix.so
account    required     /lib/security/pam_krb5.so

password   required     /lib/security/pam_cracklib.so retry=3
password   sufficient   /lib/security/pam_unix.so nullok md5 shadow use_authtok
password   sufficient   /lib/security/pam_krb5.so
password   required     /lib/security/pam_deny.so

session    required     /lib/security/pam_limits.so
session    required     /lib/security/pam_unix.so
session    optional     /lib/security/pam_krb5.so


do i need to edit /etc/pam.d/su or do i just need to make a minor change in either or both of the above two configs?
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy