problem setting up ssh-krb5 from Debian Sarge

Wes Chow wes at
Fri Oct 29 13:26:24 EDT 2004

> 	I would recommend changing your common-auth so that pam is not 
> required.  Mine reads like this:
> #auth   required nullok_secure
> auth       sufficient
> auth       sufficient nullok try_first_pass
> auth       required
> 	So I have commented out where it's defined as required 
> 	and include it on another line as sufficient.  That may be what's blocking 
> you.

Still no go, and I have the exact same common-auth as you.  Something
else I just realized, though, is that I'm using NIS for distributing
account information.

Maybe I'm missing something with that... my nsswitch.conf file is:

passwd:         compat
group:          compat
shadow:         compat

wchow at jack:~$ ypcat passwd
wchow:x:1000:100:Wes Chow,,,:/home/wchow:/bin/bash

Do I need anything in PAM for this?


--          OpenPGP key = 0xA5CA6644
fingerprint = FDE5 21D8 9D8B 386F 128F  DF52 3F52 D582 A5CA 6644

More information about the Kerberos mailing list