From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.5)
Description of problem:
I had a hard time having a Linux client authenticate against samba
with winbind. I eventually found it's because pam was not instructed
to auth with pam_winbind.so in /etc/pam.d/login. Would be great
system-config-authentication took care of that too!
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Run system-config-authentication to enable winbind auth.
2. Have a look into /etc/pam.d/login
Actual Results: /etc/pam.d/login has no reference to pam_winbind.so
auth required pam_securetty.so
auth sufficient pam_winbind.so
auth sufficient pam_unix.so use_first_pass
auth required pam_stack.so service=system-auth
auth required pam_nologin.so
account sufficient pam_winbind.so
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
# pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session required pam_stack.so service=system-auth
session optional pam_console.so
# pam_selinux.so open should be the last session rule
session required pam_selinux.so multiple open
This is not right - authconfig updates only the system-auth file and
that's right - note that every other service stack file includes the
system-auth stack by calling the pam_stack.so.
I suppose there is something wrong with your configuration if the
standard way doesn't work for you.