Greetings,
I have just finished configuring Redhat 7.3 with winbind to authenticate off of
our NT 4.0 PDC via winbind and ran into a problem with the username/password
handoff. It seems that the first letter is getting cut off when attempting to
authenticate through PAM to the PDC. When you double the first letter for example
MMYDOMAIN\username, it works perfectly. This authentication method has worked
for all the other services on the machine which is why I think it may be
freeradius. Any ideas?
NT Security Logs shows
Reason:
Unknown user name or bad password
User Name: YDOMAIN\username
Domain:
MYDOMAIN
Logon Type: 3
Logon Process: KSecDD
Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Workstation Name: \\LINUXSERVER
The linux error log while running winbind in debug mode shows
May 28 14:57:43 linuxserver pam_winbind[29736]: Verify user `YDOMAIN\username'
with password `XXXXXXX'
May 28 14:57:44 linuxserver pam_winbind[29736]: user `YDOMAIN\username' not found
The accompanying PAM configuration file for radiusd is
#%PAM-1.0
auth required /lib/security/pam_winbind.so debug
auth required /lib/security/pam_nologin.so
account required /lib/security/pam_permit.so
session required /lib/security/pam_unix.so none
Thanks,
----
Richard Lyszczek
AIO Network Solutions, Inc.
www.aiosolutions.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
