[Date Prev][Date Next] [Chronological] [Thread] [Top]

re: AW: Authentication problem.



To further my understanding from the answer to the ldap authentication problem, which may have been related to an issue I had on Redhat a while back:

RE:

auth sufficient /lib/security/pam_unix.so likeauth nullok
auth sufficient /lib/security/pam_ldap.so use_first_pass

This allows the user to be authorized in this layer of Pam if he exists in Ldap OR /etc/shadow (/etc/passwd).  AND if I was to change these to required, you would have to exist in BOTH of them correct?

> Yes, this is because of:
auth        sufficient    /lib/security/pam_unix.so likeauth nullok


What mechanism holds this up?  Do you mean e.g.:

login:  root

or su root won't allow you to login as root with out the pam_unix.so module in the stack?

This line allows local users. But without this line, you aren?t allowed
to login as "root" anymore. <