LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   CentOS 6 and Active Directory Integration (https://www.linuxquestions.org/questions/linux-software-2/centos-6-and-active-directory-integration-4175591684/)

d072330 10-18-2016 04:47 PM
CentOS 6 and Active Directory Integration
 
I am trying to implement active directory logins (Server 2012 R2 Standard) to our CentOS 6 workstations. I have been at this all week and almost have it working.

When I run
Quote:
kinit <domain user>
and enter password it returns with no error messages.

When I run
Quote:
wbinfo -a and -g
it returns AD users and groups.

When I run
Quote:
getent passwd
it returns all domain and local users.

When I run
Quote:
su - <domain user>
I can login to the command line successfully. This also creates the users home directory
Quote:
/home/<domain>/<domain user>
When I run
Quote:
ssh <domain user>@pc01
I can login to the command line successfully. This also creates the users home directory
Quote:
/home/<domain>/<domain user>
Everything seems to be working until I try to login to the console. I am then presented with the following error messages trying different username combos.

Using domain user alias ex: t.user
Quote:
Oct 18 15:13:42 pc01 pam: gdm-password: pam_unix(gdm-password:auth): authentication failure; logname= uid=0 euid=0 tty=:0 ruser= rhost= user=t.user
Using user alias plus domain t.user\@example.com
Quote:
Oct 18 15:13:57 pc01 pam: gdm-password: pam_unix(gdm-password:auth): check pass; user unknown

Oct 18 15:13:57 pc01 pam: gdm-password: pam_unix(gdm-password:auth): authentication failure; logname= uid=0 euid=0 tty=:0 ruser= rhost=

Oct 18 15:13:57 pc01 pam: gdm-password: pam_succeed_if(gdm-password:auth): error retrieving information about user t.user\@example.com

Oct 18 15:13:57 pc01 pam: gdm-password: gkr-pam: error looking up user information for: t.user\@example.com
Using domain\user alias ex: EXAMPLE\t.user login
Quote:
Oct 18 15:14:12 pc01 pam: gdm-password: pam_unix(gdm-password:auth): check pass; user unknown

Oct 18 15:14:12 pc01 pam: gdm-password: pam_unix(gdm-password:auth): authentication failure; logname= uid=0 euid=0 tty=:0 ruser= rhost=

Oct 18 15:14:12 pc01 pam: gdm-password: pam_succeed_if(gdm-password:auth): error retrieving information about user EXAMPLE\t.user

Oct 18 15:14:12 pc01 pam: gdm-password: gkr-pam: error looking up user information for: EXAMPLE\t.user
What in the french toast am I missing?

Thanks in advance.

sundialsvcs 10-18-2016 04:50 PM
If I were a guessing man, I'd say that it has something to do with that word, EXAMPLE\ ...

Also, when troubleshooting these kinds of issues, always arrange things so that you can look at the LDAP Server's logs, contemporaneously. Be able to "try something, and then immediately see what both machines saw, and what both machines say they said or heard."

d072330 10-18-2016 04:55 PM
I am guessing this is the culprit but I am not 100% sure.

Using domain user alias ex: t.user
Quote:
Oct 18 15:13:42 pc01 pam: gdm-password: pam_unix(gdm-password:auth): authentication failure; logname= uid=0 euid=0 tty=:0 ruser= rhost= user=t.user
I can login on the command line just fine but I cannot login to the desktop whilst sitting at it.

Thoughts?

d072330 10-27-2016 12:23 PM
bueller bueller? Anyone?


All times are GMT -5. The time now is 05:59 PM.