LADP User Unable to Login via SSH
Hi there,
My case is that, the LADP user connected could not login via SSH. This user could login in the system console. And all the other users could login within ssh. And I was wondering whether any one could suggest which place to check next. And here is the detail: I was using SUSE 11.3 when I met this error. PAM module is used, and the corresponding files in /etc/pam.d/ have all been updated. Here is what I've added: Code:
yl-1:/etc/pam.d # fgrep ldap *pc Code:
Sep 15 15:03:06 yl-1 sshd[8252]: error: PAM: Permission denied for Admin_333333 from 192.168.99.27 |
Have you checked you sshd_config? For example:
Code:
grep UsePAM /etc/ssh/sshd_config Cheers, Evo2. |
Hi Evo2,
The result returned from Code:
grep UsePAM /etc/ssh/sshd_config Code:
UsePAM yes Code:
debug2: input_userauth_request: try method none Quote:
|
Hi,
a line of interest in the sshd output is: Quote:
While I do have some experience debugging ssh auth failures, I don't have specific experience with pam/ldap configuration. A quick google on the topic provided the following (here at lq): http://wiki.linuxquestions.org/wiki/Pam_ldap Perhaps you could check to make sure your configuration is consistent with what is described there. HTH, Evo2. |
Hi,
a line of interest in the sshd output is: Quote:
While I do have some experience debugging ssh auth failures, I don't have specific experience with pam/ldap configuration. A quick google on the topic provided the following (here at lq): http://wiki.linuxquestions.org/wiki/Pam_ldap Perhaps you could check to make sure your configuration is consistent with what is described there. HTH, Evo2. |
Thank you Evo2. I created another VM and followed the steps instructed by http://wiki.linuxquestions.org/wiki/Pam_ldap and now this AD user is able to log with SSH. Guess there must be something wrong in my original /etc folder, but I just cannot tell where.
Lei Quote:
|
All times are GMT -5. The time now is 03:09 AM. |