/etc/pam.d/ssh /etc/pam.d/login /etc/pam.d/telnetd NOTE : pam_radius does NOT alleviate the need for the /etc/passwd file. pam_radius does not implement the pam_sm_setcred function to set the user id, group id, and other things. But, you can set a default_user in the configuration (but everyone not in the /etc/passwd will be default_user, so use with caution.)
For you others, if there is an implementation out there that doesn't use the /etc/passwd, let me know. Joe [EMAIL PROTECTED] wrote: > > > I hope this is not too basic, I have searched the archives for examples of > a RedHat 7.3 install with no luck. > > Can someone help me with the use of the Radius Authentication PAM module > for RedHat 7.3, I want to have the server use an existing Cisco Secure > Radius service to authentcate SSH /console logins. > > What I have found is that RedHat 7.3 (or all 7.x) breaks out the PAM auth > files into seperate files rather than one pam.conf file. I am not sure > which ones in the /etc/pam.d folder I need to include the > > > > Copy 'pam_radius_auth.so' to /lib/security/pam_radius_auth.so > > In the per-application configuration (/etc/pam.d/application) add: > > auth required /lib/security/pam_securetty.so > auth sufficient /lib/security/pam_radius_auth.so > auth required /lib/security/pam_unix_auth.so > > > And when it comes to configuring the radius client to use my RADIUS server > in the pam_radius_auth file in /etc/raddb/server (RedHat 7.3 doesn't have > that path.) > > Basically I think I understand a bit of what is needed, I am just not sure > how to apply it for this variant of Linux. > > Thanks for any config help, > > Nick > > > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
