Red Hat Bugzilla – Bug 7620
failure to authenticate when remote NIS server is configured for C2 security
Last modified: 2008-05-01 11:37:53 EDT
Currently our NIS servers are on Sol 2.6 machines in which NIS uses the
shadow.adjunct file (ie C2 security). This makes the shadow information
unretreiveable via typical NIS methods since the NIS database files are not
generated. RH 6.0 thus fails to authenticate using this method of NIS
I contacted the author/maintainer of yp-tools (Thorsten Kukuk
<firstname.lastname@example.org>) and per his suggestion, I tried SuSE 6.2 which
properly authenticated logins via NIS using the above configuration.
A newer version of ypbind should fix this problem.
This authentication failure is also present in RH 6.1. By default, 'login' uses
the PAM module 'pam_pwdb.so'. In order to use C2 enabled NIS, one must edit
/etc/pwdb.conf so that the 'nis' entries read 'decnis'. This is documented