Hello again,
So I've just upgraded one of my systems and want to keep the old system around for a little bit in case of some unforseen disaster (missing/corrupt file, program not working, missing config file, etc.). My systems use PAM ldap authentication for logging in via ssh and using sudo.
One thing to note: I didn't set this up, I was handed the upgrade half way through and do not have much experience configuring PAM.
On the old system, it is no longer necessary to use PAM as the only person logging in would be me with my local account. Also, since I changed it's IP address, it can't actually even get to the ldap server to authenticate due to a firewall rule. I was able to disable SSH PAM ldap authentication (setting 'UsePAM no' in sshd_config), but I can't find out where to stop sudo from using it.
This is what it looks like when I try to sudo:
Code:
[user@host ~]$ sudo -s
Password:
Sorry, try again.
Password:
Sorry, try again.
Password:
sudo: 2 incorrect password attempt
In between each password attempt, it hangs for 30 seconds (trying to contact the ldap server and can't).
I tried commenting out the lines in /etc/pam.d/sudo but that didn't work in a slightly different way:
Code:
[user@host ~]$ sudo -s
Sorry, try again.
Sorry, try again.
Sorry, try again.
sudo: 3 incorrect password attempts
As you can see, this time it didn't even prompt me for a password. As soon as I hit enter on the sudo -s command the output came to the screen without delay.
So, sure, I could just run su - to get to root on the old system if needed but now it's bothering me that I can't get it to stop trying to authorize over PAM when I run the sudo -s command. I would like to know how to fix it for my own knowledge.
Anyone do this before? Thanks in advance.