[OpenAFS] PAM problem with 1.4.4 and Linux
Jeff Blaine
jblaine@kickflop.net
Fri, 25 Jan 2008 11:19:25 -0500
Hi all, if anyone has any ideas about this, please let me know.
* OpenAFS 1.4.4 on Red Hat Enterprise Linux Server release 5
* SSHD without privsep
* User gets in but has no tokens
auth required pam_env.so
auth sufficient /lib/security/pam_afs.so.1 ignore_root
setenv_password_expires debug
auth required pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 500 quiet
auth required pam_deny.so
Jan 25 11:06:42 rigel pam_afs[20494]: AFS Options: nowarn=0,
use_first_pass=0, try_first_pass=0, ignore_uid = 1, ignore_uid_id = 0,
refresh_token=0, set_token=0, dont_fork=0, use_klog=0
Jan 25 11:06:42 rigel pam_afs[20494]: AFS Username = `jblaine'
Jan 25 11:06:42 rigel pam_afs[20494]: AFS No first password for user jblaine
Jan 25 11:06:42 rigel pam_afs[20494]: New PAG created in pam_authenticate()
Jan 25 11:06:42 rigel pam_afs[20494]: forking ...
Jan 25 11:06:42 rigel pam_afs[20495]: in child
Jan 25 11:06:42 rigel pam_afs[20494]: in parent, waiting ...
Jan 25 11:06:42 rigel pam_afs[20495]: child: auth_ok=1
Jan 25 11:06:42 rigel pam_afs[20494]: parent: auth_ok=1
Jan 25 11:06:42 rigel pam_afs[20494]: leaving auth: auth_ok=1
Jan 25 11:06:42 rigel pam_afs: AFS Options: nowarn=0, use_first_pass=1,
try_first_pass=0, ignore_uid = 1, ignore_uid_id = 0, refresh_token=8,
set_token=8, dont_fork=8, use_klog=8
Jan 25 11:06:42 rigel pam_afs: AFS Establishing creds for user jblaine
Jan 25 11:06:42 rigel pam_afs: AFS Trying first password for user jblaine
Jan 25 11:06:42 rigel pam_afs: New PAG created in pam_setcred()
Jan 25 11:06:42 rigel pam_afs: AFS Options: nowarn=0, use_first_pass=1,
try_first_pass=0, ignore_uid = 1, ignore_uid_id = 0, refresh_token=8,
set_token=8, dont_fork=8, use_klog=8
Jan 25 11:06:42 rigel pam_afs: AFS ReInitializing creds for user jblaine