LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices


Reply
  Search this Thread
Old 09-22-2003, 08:50 PM   #1
jimrt
Member
 
Registered: Mar 2003
Posts: 32

Rep: Reputation: 15
Kerberos and PAM


Hi,

I recently brought up a test box running Redhat 9 that authenticates against our Windows 2000 Active Directory controllers using kerberos. The authentication works perfectly, but I keep recieving annoying messages in my logs:

Sep 22 19:40:40 skynet sshd(pam_unix)[19627]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=box1.network.net user=macdude
Sep 22 19:40:40 skynet sshd[19627]: pam_krb5: authentication succeeds for `macdude'
Sep 22 19:40:40 skynet sshd(pam_unix)[19628]: session opened for user macdude by (uid=0)

As you can see the login succeeds, but a failure is recorded. I recieve an almost identical error message when logging in via the console. Not a big deal, but it clutters up my logs. Any help would be appreciated.

P.S. Does anyone know if openSSH 3.7.x supports kerberos authentication with the SSH 2 protocol? If so, do you know of any FREE SSH Clients for Windows that support kerberos authentication. I'm attempting to implement single sign on.......
 
Old 09-26-2003, 06:59 PM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594
"debug" settings in pam config?
 
Old 09-26-2003, 07:50 PM   #3
jimrt
Member
 
Registered: Mar 2003
Posts: 32

Original Poster
Rep: Reputation: 15
I figured it out. In the auth section of /etc/pam.d/system-auth I placed the kerberos line ABOVE pam_unix - and the errors went away.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
passwordless OpenSSH with MIT-Kerberos and PAM dbalsige Linux - Software 1 11-12-2009 01:12 PM
suse9.1client W2k ADS kerberos and pam fatcake Linux - Networking 1 06-09-2005 02:27 AM
Active Directory, Kerberos, LDAP, PAM, and nsswitch PenguinPwrdBox Linux - Security 1 06-04-2005 10:56 PM
PAM/Kerberos authentication problem hmartin216 Linux - Security 2 03-11-2005 10:28 PM
vsftpd + pam + virtual users - Pam cannot load database file. mdkelly069 Linux - Networking 3 09-23-2004 12:07 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 01:06 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration