LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise
User Name
Password
Linux - Enterprise This forum is for all items relating to using Linux in the Enterprise.

Notices


Reply
  Search this Thread
Old 06-13-2005, 06:02 PM   #1
jrsugar
LQ Newbie
 
Registered: Jun 2005
Posts: 6

Rep: Reputation: 0
Question Why is pam_authenticate() returning "Authentication Failure" for valid user/passwd?


I am new to managing my own Redhat Linux ES box.

I have added a login capability to a program I have written, asking the user to log in using a LINUX username and to supply the correct LINUX password. I have gotten a lot of help from pwauth source code.

The problem is, I can't get password authentication to work on my standalone LINUX ES box. I first wrote my user password authentication routine to use the routines getpwnam() and crypt() but that didn't work since /etc/passwd seems to only contain "x" for passwords. I see that /etc/shadow has the real password in it and am guessing my box is configured to use PAM for user password authentication.

I have modified my program to instead use PAM for password authentication the same way pwauth does: pam_start() followed by pam_authenticate(). The problem is that pam_authenticate always returns 'Authentication failure' even though I am using a valid username and password.

Is it possible my system is using shadow passwords without PAM?

I can supply my source code if it would help.

Thank you!
Julie
 
Old 06-14-2005, 12:24 PM   #2
Matir
LQ Guru
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507

Rep: Reputation: 128Reputation: 128
No, you're probably using PAM. However, in /etc/pam.d/, there are configuration files for each service that is using PAM. I haven't used PAM before (programatically), but you might just need to add a file in there.
 
Old 06-14-2005, 12:43 PM   #3
jrsugar
LQ Newbie
 
Registered: Jun 2005
Posts: 6

Original Poster
Rep: Reputation: 0
Thanks very much, David. I appreciate your response. I did find something last night that is now allowing pam_authenticate() to return PAM_SUCCESS and it was indeed something in the /etc/pam.d directory. I needed to modify the file "other" which had pam_deny listed for all authorizations and I had to change them all to pam_unix:

OLD version of "other":
#%PAM-1.0
auth required /lib/security/$ISA/pam_deny.so
account required /lib/security/$ISA/pam_deny.so
password required /lib/security/$ISA/pam_deny.so
session required /lib/security/$ISA/pam_deny.so

NEW version of other:
auth required /lib/security/$ISA/pam_unix.so
account required /lib/security/$ISA/pam_unix.so
password required /lib/security/$ISA/pam_unix.so nullok use_authtok md5 shadow nis
session required /lib/security/$ISA/pam_unix.so

I modified "other" rather than creating an application-specific authorization file in here which I think is ok to do.
 
Old 08-03-2007, 10:27 AM   #4
yog54
LQ Newbie
 
Registered: Aug 2007
Posts: 3

Rep: Reputation: 3
Talking Solucion!!!!

I had the same problem, i open the file /etc/shadow and the user wasn't there. So i copy the user mail and rename the new entry. And that do the trick. Then i change the user password (passwd username).
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
"passwd: Authentication token manipulation error" Neowulf Linux - Newbie 8 03-05-2014 05:01 PM
Why is pam_authenticate() returning "Authentication Failure" for valid user/passwd? jrsugar Linux - Newbie 1 06-14-2005 08:51 PM
Why is pam_authenticate() returning "Authentication Failure" for valid user/passwd? jrsugar Linux - Newbie 2 06-14-2005 03:49 PM
Why is pam_authenticate() returning "Authentication Failure" for valid user/passwd? jrsugar Programming 1 06-14-2005 09:18 AM
Dial up Authentication failure for ISP that has "@" in the user name. raypuddy Linux - General 2 06-06-2005 04:27 AM

LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise

All times are GMT -5. The time now is 09:59 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration