Re: ldap/pam problem

To: Rob Browning <rlb@cs.utexas.edu>
Cc: debian-user@lists.debian.org
Subject: Re: ldap/pam problem
From: Jason Gunthorpe <jgg@ualberta.ca>
Date: Wed, 16 Jun 1999 17:53:07 -0600 (MDT)
Message-id: <[🔎] Pine.LNX.3.96.990616175143.12298C-100000@Wakko.deltatee.com>
In-reply-to: <[🔎] 87aetzda4n.fsf@raven.localnet>

On 16 Jun 1999, Rob Browning wrote:

> 
> If so, then when I tried those modifications, I couldn't figure out
> how to get reasonable behavior.  If you have 
> 
>   auth       sufficient pam_ldap.so
>   auth       required   pam_unix_auth.so try_first_pass
> 
> then if the entry is found in ldap, pam returns and you never execute
> things like motd, etc. which is not what you want.

I used this complex invokation, you'll need an appropriately bug-fixed pam
library (Ben, you have my patches..)

auth       requisite  pam_securetty.so
auth       [success=1 default=ignore] pam_unix_auth.so
auth       required   pam_ldap.so use_first_pass
auth       optional   pam_group.so
auth       optional   pam_mail.so

Jason

Reply to:

Follow-Ups:
- Re: ldap/pam problem
  - From: Sergey V Kovalyov <sqk0316@SCIRES.ACF.NYU.EDU>
- Re: ldap/pam problem
  - From: Rob Browning <rlb@cs.utexas.edu>
- Re: ldap/pam problem
  - From: Ben Collins <collinbm@djj.state.va.us>

References:
- ldap/pam problem
  - From: Rob Browning <rlb@cs.utexas.edu>

Prev by Date: RE: Ethernet card problems
Next by Date: Re: Cron Job
Previous by thread: ldap/pam problem
Next by thread: Re: ldap/pam problem
Index(es):
- Date
- Thread