Ulrich Hiller wrote:
When I want to login via ssh as one of those useres defined in ldap it
does not accept the password. The /var/adm/messages says this:
sshd[3031]: [ID 800047 auth.error] error: PAM: Authentication failed
Ok, I saw that pam.conf did not have sshd definitions. I added
sshd auth requisite pam_authtok_get.so.1
sshd auth required pam_dhkeys.so.1
sshd auth sufficient pam_unix_auth.so.1
sshd auth required pam_ldap.so.1 try_first_pass
sshd account required pam_unix_account.so.1
to /etc/pam.conf. Now I get immediately 'connection closed' when I give
in the password. Even root cannot log in anymore (I allowd root login
temporarily in sshd_config).
Read the sshd(1M) man page. sshd is NOT the PAM service name used
for sshd on Solaris. You very likely want sshd-kbdint.
In addition to that pam_ldap.so.1 has no option called try_first_pass in
Solaris 10.
--
Darren J Moffat
_______________________________________________
opensolaris-discuss mailing list
[email protected]
