[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Re: PAM/Kerberos requiring local accounts
- From: "Jeff Mitchell" <jam6 cec wustl edu>
- To: "Pluggable Authentication Modules" <pam-list redhat com>
- Subject: Re: PAM/Kerberos requiring local accounts
- Date: Mon, 3 May 2004 09:00:36 -0500
I've tried dropping the account required line on both the php and httpd
files in /etc/pam.d, but that doesn't help. I've also tried changing
common-auth so that the first line is
auth sufficient pam_krb5.so
but this doesn't work either. I don't need any login information...(Mail
authentication works, for instance, even though it doesn't return login
information, but I'm not sure how secure it is)...I *just* need to know if
the username and password are valid on the domain specified in my krb5.conf
file.
Any other ideas?
Thanks,
Jeff
----- Original Message -----
From: "Nils O. Selåsdal" <noselasd frisurf no>
To: "Pluggable Authentication Modules" <pam-list redhat com>
Sent: Monday, May 03, 2004 3:06 AM
Subject: Re: PAM/Kerberos requiring local accounts
> This is expected. kerberos is used only for authentication. Your linux
> box also needs a place to look for login information
> (uid,gid,homedirectory etc.) Many use ldap to distribute such
> information.
> If you don't want/need machine accounts, drop the line that says
> account required /lib/security/pam_krb5.so
> (or change 'required' to 'optional')
>
> --
> Nils O. Selåsdal <noselasd frisurf no>
>
>
> _______________________________________________
> Pam-list mailing list
> Pam-list redhat com
> https://www.redhat.com/mailman/listinfo/pam-list
>
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]