[Date Prev][Date Next] [Chronological] [Thread] [Top]

pam.d and ldap?

To: <OpenLDAP-software@OpenLDAP.org>
Subject: pam.d and ldap?
From: <fred@ift.ulaval.ca>
Date: Tue, 01 Aug 2000 18:04:49 -0400
Cc: <OpenLDAP-software@OpenLDAP.org>
In-reply-to: <l03130352b5ace8834cba@[198.40.24.94]>
References: <l03130352b5ace8834cba@[198.40.24.94]>
User-agent: IMP/PHP IMAP webmail program 2.2.0-pre13

Here is the content of my pam.d/ssh file :

#%PAM-1.0
auth       required     /lib/security/pam_nologin.so
auth       sufficient    /lib/security/pam_ldap.so
auth       required     /lib/security/pam_unix_auth.so try_first_pass
account    sufficient   /lib/security/pam_ldap.so
account    required     /lib/security/pam_unix_acct.so
password   required     /lib/security/pam_cracklib.so
password   sufficient   /lib/security/pam_ldap.so
password   required     /lib/security/pam_pwdb.so use_first_pass
session    required     /lib/security/pam_unix_session.so

I can login from ssh2 with no problem if I'm not using any Access Control Rules 
for my server.
But when I had the following rule

defaultaccess read

access to attr=userPassword
     by self write
     by * compare

I can't login anymore from ssh2! 
Could anybody point me to a correct configuration please???

Thanks's
Fred

-------------------------------------------------
This mail sent through IMP: courriel.ift.ulaval.ca

References:
- Ordering integers -- An integral attribute syntax?
  - From: "Karl O. Pinc" <kpinc@artic.edu>

Prev by Date: Mutiple Databases
Next by Date: Re: nsswitch.conf
Index(es):
- Chronological
- Thread