I've tried dropping the account required line on both the php and httpd files in /etc/pam.d, but that doesn't help. I've also tried changing common-auth so that the first line is auth sufficient pam_krb5.so but this doesn't work either. I don't need any login information...(Mail authentication works, for instance, even though it doesn't return login information, but I'm not sure how secure it is)...I *just* need to know if the username and password are valid on the domain specified in my krb5.conf file. Any other ideas? Thanks, Jeff ----- Original Message ----- From: "Nils O. Selåsdal" <noselasd@xxxxxxxxxx> To: "Pluggable Authentication Modules" <pam-list@xxxxxxxxxx> Sent: Monday, May 03, 2004 3:06 AM Subject: Re: PAM/Kerberos requiring local accounts > This is expected. kerberos is used only for authentication. Your linux > box also needs a place to look for login information > (uid,gid,homedirectory etc.) Many use ldap to distribute such > information. > If you don't want/need machine accounts, drop the line that says > account required /lib/security/pam_krb5.so > (or change 'required' to 'optional') > > -- > Nils O. Selåsdal <noselasd@xxxxxxxxxx> > > > _______________________________________________ > > Pam-list@xxxxxxxxxx > https://www.redhat.com/mailman/listinfo/pam-list > _______________________________________________ Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
