Re: ldap re-creating database
On Wed, Nov 20, 2002 at 18:16:34 -0500, Derrick 'dman' Hudson wrote:
> On Tue, Nov 19, 2002 at 01:24:18PM +1000, mdevin wrote:
> | One thing interesting though is that if I enter my proper system
> | password then ldap refuses me once and gives another Password: prompt.
> | If I then enter the proper system password again, I am allowed to login.
> | So ssh must check /etc/passwd and /etc/shadow too.
> It does if it is setup to do so. You can also control whether it
> re-prompts or not. To have the system prompt once and check the data
> in both databases, use options like this :
> auth sufficient pam_ldap.so
> auth required pam_unix.so nullok try_first_pass
> # ^^^^^^^^^^^^^^
Ahhh, excellent. Thanks for that info. I will update my /etc/pam.d/ssh
file now. It was starting to get to me having to enter the password