Attempting to elminate authentication failure messages

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



I think the error has to do with the way PAM is authenticating. It tries 
pam_unix, fails then tries pam_ldap and succeeds. The problem is in 
/etc/pam.d/system-auth. Is pam_unix before pam_ldap? Switch them around 
and try again.

Jeff

Bliss, Aaron wrote:
> Hi everyone,
> I'm using fds for authentication; /etc/nsswitch.conf is configured to
> first query the ldap server and then local files for user information;
> I'm not sure why, however for some reason whenever a user attempts to
> authenticate to the box with a password, the box always reports in
> /var/log/messages an authentication failure, followed by a success (the
> success of course if only the user did in fact type their password
> correctly; in the excerpt below, I did not mistype my password; I would
> have expected that by configuring /etc/nsswitch.conf to first query the
> ldap server and then local files would have eliminated the misleading
> authentication messages...any ideas?  Thanks very much 
>
> Jun 21 11:16:27 ms-lnx-s53 sshd(pam_unix)[16642]: check pass; user
> unknown
> Jun 21 11:16:27 ms-lnx-s53 sshd(pam_unix)[16642]: authentication
> failure; logname= uid=0 euid=0 tty=NODEVssh ruser=
> rhost=abliss.preferredcare.org
> Jun 21 11:16:27 ms-lnx-s53 sshd(pam_unix)[16644]: session opened for
> user awb by (uid=0)
>
> Confidentiality Notice:
> The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information.  If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited.  If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.
>
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>   




[Index of Archives]     [Fedora User Discussion]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora News]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora QA]     [Fedora Triage]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Yosemite Photos]     [Linux Apps]     [Maemo Users]     [Gnome Users]     [KDE Users]     [Fedora Tools]     [Fedora Art]     [Fedora Docs]     [Maemo Users]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Fedora ARM]

  Powered by Linux