LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page multiple auth methods in pam.d/sshd?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-27-2014, 01:02 PM   #1
ghughes5669
LQ Newbie
 
Registered: Oct 2012
Posts: 23

Rep: Reputation: Disabled
Question multiple auth methods in pam.d/sshd?

Hello!

Im trying to get PAM to allow for multiple methods of authentication. I want to have an RSA SecurID PAM module authenticate one group of users, Active Directory to authenticate a second, separate group of users, and finally, a local /etc/passwd to authenticate a third group of users. One of these groups has SecurID tokens and Active Directory accounts. This group should only be able to log in to the Linux server with their SecurID token and not their Active Directory credentials. The other groups should have only the Active Directory authentication requested.

I've tried stacking PAM modules in different orders and different controls, and I've worked on the system-auth-ac file to try and deny the Active Directory to those users by using pam_listfile in the system-auth-ac file. None of the variations have brought any joy.

I'm racking my brains on this one - seems there should be some way to wrangle a particular authentication method for any arbitrary group, but the answer eludes me.

Has anyone tried something this involved recently?

Thanks for any tips or guidance on this!


Gregg
 
Old 07-01-2014, 05:26 AM   #2
vishesh
Member
 
Registered: Feb 2008
Distribution: Fedora,RHEL,Ubuntu
Posts: 661

Rep: Reputation: 66
We can set authentication order in a way so that if one auth method fail it try for next one.

Thanks
 
  


Reply

Tags
active directory, login, pam, pamauth, ssh



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
sshd using pam dazdaz Linux - Security 1 03-21-2013 01:22 PM
Want to use pam-config for sshd and some other pingu Linux - Security 2 04-05-2012 02:53 PM
questions about encryption/auth methods fil.krohnengold Linux - Wireless Networking 5 01-12-2007 03:47 PM
syslog-ng setup (for sshd and auth) m15a4 Linux - Security 12 02-17-2006 01:53 AM
SSHD: No further authentication methods. URGENT ciaoci Linux - Security 4 10-08-2005 11:31 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 11:55 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration