Bug 99174
Summary: | RHN Satellite can't authenticate users through PAM | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | Red Hat Satellite 5 | Reporter: | Aleksandr Brezhnev <brezhnev> | ||||||
Component: | Server | Assignee: | Mihai Ibanescu <mihai.ibanescu> | ||||||
Status: | CLOSED NOTABUG | QA Contact: | Red Hat Satellite QA List <satqe-list> | ||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | medium | ||||||||
Version: | unspecified | CC: | rhn-bugs, tao | ||||||
Target Milestone: | --- | ||||||||
Target Release: | --- | ||||||||
Hardware: | i386 | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2003-07-21 18:36:35 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Bug Depends On: | |||||||||
Bug Blocks: | 97549 | ||||||||
Attachments: |
|
Description
Aleksandr Brezhnev
2003-07-15 14:31:27 UTC
Created attachment 92937 [details]
PyPAM binary rpm
Created attachment 92938 [details]
PyPAM source rpm
Aleksandr, You may want to customize the service file for PAM. This is what I used and worked for my satellite test: #%PAM-1.0 auth required /lib/security/pam_env.so auth sufficient /lib/security/pam_krb5.so no_user_check auth required /lib/security/pam_deny.so account required /lib/security/pam_krb5.so no_user_check I wouldn't go with the password PAM service file, login would be better. But if you don't have NIS set up on that box, it won't work. Best way to debug it is to look in /var/log/messages, PAM will spew errors there. If you don't see any messages (neither successful nor unsuccessful logins) in /var/log/messages, make sure the user has PAM authentication turned on (there is a checkbox in the user profile). That being said, rhn_register should work out of the box. The web site has a bug that we'll fix as soon as possible: if password encryption is turned on, PAM password verification is never performed. Workaround for now is to turn encryption off; we'll have a patch really soon though. I disabled password encryption and used your PAM configuration file. Everything is working now. I can register systems using user account with Kerberos authentication and I can login into website using this account. Thanks a lot! Cool. Closing this bug as NOTABUG - the web code is already fixed, and PyPAM will be in the list of satellite RPMs by default. |