Hi Mitch,

On Wed, Nov 28, 2001 at 01:25:08PM -0500, Mitchell Baker wrote:
> Background:

> Solaris 8 system which has had Titan run on it. Using the pam-krb5
> module from Sourceforge. Will authenticate but will not create ticket
> cache.. Get this following error in the logs:

> Nov 27 16:46:51 SYSTEM sshd[644]: [ID 551190 auth.debug] pam_krb5:
> pam_sm_authenticate(sshd USERNAME): entry:
> Nov 27 16:46:51 SYSTEM sshd[644]: [ID 551190 auth.debug] pam_krb5:
> pam_sm_authenticate(sshd USERNAME): exit: success
> Nov 27 16:46:51 SYSTEM sshd[644]: [ID 800047 auth.debug] debug1: PAM
> Password authentication accepted for user "USERNAME"

> Any ideas? This is working on other system we have. The main diff is
> Titan was not run on them...

Hmm, are you using the same ssh server (vendor & version) on both
machines? I have personally had no problems using password
authentication with pam_krb5 in OpenSSH, although there's a known issue
where OpenSSH compiled with PAM support will not allow RSA
authentication when configured to use this pam_krb5 module, because
OpenSSH incorrectly treats an error code from pam_setcred() as fatal
when it should not be.

Regards,
Steve Langasek
postmodern programmer

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8BS+HKN6ufymYLloRAlXxAKCCg5tIVIzw85aYq0shetCySwOJoACgqHuc
fkyu6WDwXRGapZ5q2ZuM4JU=
=u58B
-----END PGP SIGNATURE-----

_______________________________________________
Pam-list mailing list
Pam-listredhat.com
https://listman.redhat.com/mailman/listinfo/pam-list

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]