[OpenAFS] Obtaining Tokens at Login with Redhat 7.3

Charles Clancy security@xauth.net
Mon, 3 Jun 2002 10:06:06 -0500 (CDT)


> > Okay, I just added the "sufficient" line to /etc/pam.d/system-auth, and it
> > works now!  Thanks! The only thing I am a little leary about is that the
> > beginning of the file bears the following comment:
> >
> > # This file is auto-generated.
> > # User changes will be destroyed the next time authconfig is run.
>
> From the authconfig(1) man page, you might want to check
> /etc/sysconfig/auth, or some other config files?
>

I was thinking about writing a patch for authconfig (a redhat tool) to
support AFS PAM, but the RH73 version wouldn't compile on my RH72 machine.
Perhaps when I get a cable connection for my machine, I'll upgrade.

Such a patch looks like it would be very easy.  It already supports krb5
PAM, so it shouldn't be too hard to modify the program to support AFS PAM
too (since the options would be similar, and there's no NSS to mess with
as with the LDAP or NIS options).

[  t charles clancy  ]-[  tclancy@uiuc.edu  ]-[  uiuc.edu/~tclancy  ]