On Tue, Apr 29, 2003 at 05:00:39PM -0500, Digant Kasundra wrote: > I'm using system-auth to enable the pam_krb5 module for authentication. I'm > authenticating against Windows Active Directory. Authentication works like > a charm. But when an account is expired, logging in will give the message > like "Your must change your password now" but then drops into a command > prompt instead of actually making the user change passwords. > Anyone know how to fix this? Yes -- don't use pam_stack, which is broken and doesn't permit a module to maintain private state between the different PAM calls. -- Steve Langasek postmodern programmer
Attachment:
pgp00083.pgp
Description: PGP signature
