problem setting up ssh-krb5 from Debian Sarge
Wes Chow
wes at woahnelly.net
Fri Oct 29 13:26:24 EDT 2004
> I would recommend changing your common-auth so that pam is not
> required. Mine reads like this:
>
> #auth required pam_unix.so nullok_secure
> auth sufficient pam_krb5.so
> auth sufficient pam_unix.so nullok try_first_pass
> auth required pam_deny.so
>
> So I have pam_unix.so commented out where it's defined as required
> and include it on another line as sufficient. That may be what's blocking
> you.
Still no go, and I have the exact same common-auth as you. Something
else I just realized, though, is that I'm using NIS for distributing
account information.
Maybe I'm missing something with that... my nsswitch.conf file is:
passwd: compat
group: compat
shadow: compat
wchow at jack:~$ ypcat passwd
wchow:x:1000:100:Wes Chow,,,:/home/wchow:/bin/bash
Do I need anything in PAM for this?
Thanks,
Wes
--
http://www.woahnelly.net/~wes/ OpenPGP key = 0xA5CA6644
fingerprint = FDE5 21D8 9D8B 386F 128F DF52 3F52 D582 A5CA 6644
More information about the Kerberos
mailing list