Bug 201343
Summary: | pam_securetty requires known user to work | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 5 | Reporter: | Bob Relyea <rrelyea> |
Component: | util-linux | Assignee: | Karel Zak <kzak> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Ben Levenson <benl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 5.0 | CC: | rrelyea, rstrode, tmraz |
Target Milestone: | --- | Keywords: | Reopened |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | 5.0.0 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2006-11-13 15:35:00 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 181386, 181509 |
Description
Bob Relyea
2006-08-04 15:08:05 UTC
I think that login - same as many other PAM client apps (openssh for example) - simply doesn't request the new username from PAM when it is called. right, that's what we figured the bug was, too. Bob, I need more details about "...but your login fails". What do you have in logs? Is there any error message from login? I need a clue when login process failed. So actually the problem is caused by pam_securetty (which is in pam config for login). It is configured as a first PAM module to call and it requires a known user to work. This can be fixed calling pam_securetty like this: auth [user_unknown=ignore success=ok ignore=ignore default=bad] pam_securetty.so Tom, is it right use this setting also for "remote" login? Now we use same configuration for remote and for local login. I think that it should be left as is for remote login if it doesn't complicate things too much for you. Reopening based on comment 7. Fixed in util-linux >= 2.13-0.40. 1. Switch to a login screen. 2. Insert your smart card. 3. Type ' '<enter> (that is hit the space bar and enter key). 4. You should be prompted with your smart card password. type it. 5. You should be logged in as you. bob Closing as the fixes are included in the latest RHEL5 trees (20061111.0) |