Quote:
Originally Posted by grail
Alex
I am a little confused (read - a lot confused really), your title says:
And then at the end you say:
So which is it? They fail or they work / ok?
Also, you do not seem to indicate what error message(s) you are receiving?
|
My LDAP users are correctly estracted by nss_ldap using commands like: getent passwd
ES:
getent passwd alex
alex:x:1009:10014:System User:/var/spool/DOMAIN/MY/home/alex:/bin/bash
$ getent shadow alex
alex:*:::::::0
And I'm able to "su - " to any LDAP user
# su - alex
$ id
uid=1009(alex) gid=10014(Domain Users) groups=10002(Administrators),10004(Domain Admins),10014(Domain Users)
And, I'm able to do ssh witch this same user (alex) with public key.
But any attempt to connect by ssh without public key fail
ssh alex@10.6.6.37
Password:
Connection closed by 10.6.6.37
Password is ok (again, I checked it with Apache Directory Studio)
My messages:
Apr 1 14:03:09 my sshd[30821]: Connection from x.x.x.x port 34053
Apr 1 14:03:09 my sshd[30821]: Failed none for alex from x.x.x.x port 34053 ssh2
Apr 1 14:03:11 my sshd(pam_unix)[30823]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=x.x.x.x user=alex
SO, I think the problem is PAM SSH...