I am using Spacewalk 2.6 with PAM authentication and have been for a few months without issues. I updated from CentOS 7.3 to 7.4 this week and now my PAM authentication no longer works with any of my users. I use PAM authentication with Kerberos 1.5.
Since CentOS 7.4 I get the following error in the tomcat.service of Spacewalk: pam_krb5[9598]: error reading keytab 'FILE:/etc/krb5.keytab' Oct 28 14:34:19 ccam-thorcp2.integrity-apps.com java[9598]: pam_krb5[9598]: TGT verified Oct 28 14:34:19 ccam-thorcp2.integrity-apps.com java[9598]: pam_krb5[9598]: authentication succeeds for 'jmillage' Oct 28 14:34:19 ccam-thorcp2.integrity-apps.com server[9598]: 2017-10-28 14:34:19,091 [ajp-bio-0:0:0:0:0:0:0:1-8009-exec-3] WARN com.redhat.rhn.domain.user.legacy.UserImpl - PAM login for user User jmillage (id 1, org_id 1) failed with error System error. Oct 28 14:34:21 ccam-thorcp2.integrity-apps.com server[9598]: 2017-10-28 14:34:21,091 [ajp-bio-0:0:0:0:0:0:0:1-8009-exec-3] INFO com.redhat.rhn.frontend.action.LoginAction - LOCAL AUTH FAILURE: [jmillage] I realize now I shouldn't have made my only admin user on PAM authentication as I can't even login with spacecmd. Is there any way I can disable PAM auth on this user so I can login without PAM? All the tools I have found allow me to reset my password, but not disable PAM. Any help would be great thanks! Joel
_______________________________________________ Spacewalk-list mailing list Spacewalk-list@redhat.com https://www.redhat.com/mailman/listinfo/spacewalk-list
