Download your favorite Linux distribution at LQ ISO.
Go Back > Forums > Linux Forums > Linux - Newbie
User Name
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!


  Search this Thread
Old 04-20-2010, 03:59 PM   #1
LQ Newbie
Registered: May 2008
Posts: 5

Rep: Reputation: 0
system-auth configuration

I'm hoping someone can help me out. I am new to pam.d config. I made configurations changes to /etc/pam.d/system-auth and /etc/pam.d/login. When these files are configured the way they are, I can't login and/or I can't login in the GUI interface and a terminal. Can someone help clarify the pam.d stuff?

Contents of /etc/pam.d/login
#line added per security guide
auth	   required service=system-auth
auth [user_unknown=ignore success=ok ignore=ignore default=bad]
auth       include      system-auth
account    required
account    include      system-auth
password   include      system-auth
# close should be the first session rule
session    required close
session    include      system-auth
session    required
session    optional
# open should only be followed by sessions to be executed in the 
user context
session    required open
session    optional force revoke
Contents of /etc/pam.d/system-auth
auth        required
auth        required per_user deny=3
auth        sufficient try_first_pass 
auth        required

account     required
account     required
account     sufficient uid < 500 quiet
account     required

password    requisite minlen=8 ucredit=-1 lcredit=-1 dcredit=-1 ocredit=-1 retry=3
password    sufficient nullok use_authtok md5 shadow remember=24 
password    required

session	    optional revoke
session     required
session     [success=1 default=ignore] service in crond quiet use_uid
session     required
Old 04-20-2010, 05:46 PM   #2
Registered: May 2001
Posts: 29,383
Blog Entries: 55

Rep: Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558Reputation: 3558
Originally Posted by socrbird View Post
I can't login and/or I can't login in the GUI interface and a terminal.
I think it would be easier and more hands-on if you (re)boot into runlevel 1 then check syslog for for reasons for login failure? If there's PAM failures it'll show in /var/log/secure and AVC (SE Linux) ones will be in /var/log/messages and or /var/log/audit/audit.log.
Old 04-27-2010, 11:00 AM   #3
LQ Newbie
Registered: May 2008
Posts: 5

Original Poster
Rep: Reputation: 0
There's nothing in the log. I can't even change to another virtual terminal CTRL-ALT-F(1-6). I can only get to the Gui (F7). Any ideas why I can't even navigate to it?


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Password Complexity after changing the /etc/pam.d/system-auth the system dies kprakashc Linux - Newbie 0 08-27-2008 09:50 PM
root and system-auth artie_effim Linux - Security 1 03-16-2006 12:55 AM
Exim4 AUTH configuration redsky Debian 0 07-26-2005 09:46 PM
pam.d/system-auth and LDAP? SheldonPlankton Linux - General 0 04-28-2005 01:11 PM
mod auth mysql configuration dpp777 Linux - Software 0 09-07-2004 02:17 PM > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 10:25 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration