Re[*]: [OpenAFS] pam and OpenAFS

Ron Croonenberg ronc@depauw.edu
Thu, 27 Oct 2005 19:05:19 -0500


Ok,  *blush*  nsswitch.conf wasn't doing what it was supposed to do.

afs logins seem to work with ssh now

Ron

>>> Derrick J Brashear <shadow@dementia.org> 10/27/05 2:31 PM >>>
you need a local userid or something like nis or ldap. there's no issue

Derrick

On Thu, 27 Oct 2005, Ron Croonenberg wrote:

> Hi Derrick,
>
> yes then it  works. (and yes I use shadow)
>
> When the username is in /etc/passwd and nthe password is different
then
> the  afs password it does get logged in, get's an afs token and get's
> the uid homedirectory shell info etc from ldap.
>
> However, when I don't have a "local" userid, it doesn't work.
>
> (Sounds like it is not an OpenAFS issue, but there must be more people
> that ran into that problem)
>
> Ron
>
>>>> Derrick J Brashear <shadow@dementia.org> 10/27/05 12:48 PM >>>
> And the username in question is listed in /etc/passwd (and /etc/shadow
> if you use shadow) right?
>
> On Thu, 27 Oct 2005, Ron Croonenberg wrote:
>
>> I am trying to debug pam loging in to afs.
>>
>> Before pam_afs and pam_unix are used sshd already complains that the
>> user that I try to login with is an illegal user.
>> (oort sshd[68250]: Illegal user cowboy from aaa.bbb.ccc.ddd)
>>
>> Does that mean that sshd is not aware that there are other accounts,
>> OpenAFS accounts, then local accounts ?
>> If that's the case how do I make sshd afs aware ?
>>
>> (on "other" linux machines I never ran into that problem)
>>
>> thanks,
>>
>> Ron
>>
>> _______________________________________________
>> OpenAFS-info mailing list
>> OpenAFS-info@openafs.org
>> https://lists.openafs.org/mailman/listinfo/openafs-info
>>
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
>
>