Hi Ronnie,
von Ronnie Neumann Gesendet: Sonntag, 21. April 2002 14:05
password sufficient /lib/security/pam_ldap.so password required pam_unix.so nullok obscure min=4 max=8
Bei mir steht folgen des in der passwd-Datei #%PAM-1.0 #auth sufficient /lib/security/pam_ldap.so auth sufficient /lib/security/pam_ldap.so use_first_pass auth required /lib/security/pam_unix.so nullok use_first_pass account sufficient /lib/security/pam_ldap.so account required /lib/security/pam_unix.so password required /lib/security/pam_pwcheck.so nullok password sufficient /lib/security/pam_ldap.so use_first_pass use_authtok password required /lib/security/pam_unix.so nullok use_first_pass use_authtok session required /lib/security/pam_unix.so Sollte doch eigendlich gehen, leider aber nicht bei mir. Wie gesagt das Einlogen Funktioniert jetzt mit ssh. Komisch ist nur das es vorher mal mit Telnet ging jetzt bekommt der User folgende Meldung: wuwell1 login: roland Password: Login incorrect In massages steht folgendes: ... Apr 22 06:18:55 wuwell1 in.telnetd[11545]: connect from root@127.0.0.1 (127.0.0.1) Apr 22 06:19:04 wuwell1 slapd[1430]: daemon: conn=2219 fd=26 connection from IP=127.0.0.1:9806 (IP=:: 34049) accepted. Apr 22 06:19:04 wuwell1 slapd[6733]: conn=2219 op=0 BIND dn="CN=ROOT,DC=WUWELL,DC=DE" method=128 Apr 22 06:19:04 wuwell1 slapd[6733]: conn=2219 op=0 RESULT tag=97 err=0 text= Apr 22 06:19:04 wuwell1 slapd[1433]: conn=2219 op=1 SRCH base="ou=sysusers,ou=nss,dc=wuwell,dc=de" scope=1 filter="(&(objectClass=shadowAccount)(uid=roland))" Apr 22 06:19:04 wuwell1 slapd[1433]: conn=2219 op=1 SEARCH RESULT tag=101 err=0 text= Apr 22 06:19:09 wuwell1 login: FAILED LOGIN 1 FROM localhost FOR roland, Authentication failure Apr 22 06:19:16 wuwell1 master[11548]: about to exec /usr/cyrus/bin/pop3d Apr 22 06:19:16 wuwell1 service-pop3[11548]: executed Apr 22 06:19:16 wuwell1 pop3d[11548]: accepted connection Apr 22 06:19:16 wuwell1 slapd[1430]: daemon: conn=2220 fd=27 connection from IP=127.0.0.1:9807 (IP=:: 34049) accepted. Apr 22 06:19:16 wuwell1 slapd[1432]: conn=2220 op=0 BIND dn="OU=NSS,DC=WUWELL,DC=DE" method=128 Apr 22 06:19:16 wuwell1 slapd[1432]: conn=2220 op=0 RESULT tag=97 err=0 text= Apr 22 06:19:16 wuwell1 slapd[6733]: conn=2220 op=1 SRCH base="ou=sysusers,ou=nss,dc=wuwell,dc=de" scope=1 filter="(&(objectClass=posixAccount)(uid=wrhein))" Apr 22 06:19:16 wuwell1 slapd[6733]: conn=2220 op=1 SEARCH RESULT tag=101 err=0 text= Apr 22 06:19:16 wuwell1 slapd[1433]: conn=2220 op=2 UNBIND Apr 22 06:19:16 wuwell1 slapd[1433]: conn=-1 fd=27 closed Apr 22 06:19:16 wuwell1 pop3d[11548]: login: rhein-w.net.wuwell.de[192.168.100.100] wrhein plaintext Apr 22 06:19:47 wuwell1 slapd[1430]: daemon: conn=2221 fd=27 connection from IP=127.0.0.1:9808 (IP=:: 34049) accepted. Apr 22 06:19:47 wuwell1 slapd[1432]: conn=2221 op=0 BIND dn="CN=ROOT,DC=WUWELL,DC=DE" method=128 Apr 22 06:19:47 wuwell1 slapd[1432]: conn=2221 op=0 RESULT tag=97 err=0 text= Apr 22 06:19:47 wuwell1 slapd[6733]: conn=2221 op=1 SRCH base="dc=wuwell,dc=de" scope=2 filter="(uid=root)" Apr 22 06:19:47 wuwell1 slapd[6733]: conn=2221 op=1 SEARCH RESULT tag=101 err=0 text= Apr 22 06:19:47 wuwell1 slapd[1433]: conn=2221 op=2 SRCH base="ou=sysusers,ou=nss,dc=wuwell,dc=de" scope=1 filter="(&(objectClass=posixGroup)(|(memberUid=root)(uniqueMember=uid=ro ot,ou=Sysusers,ou=NSS,dc=wuwell,dc=de)))" Apr 22 06:19:47 wuwell1 slapd[1433]: conn=2221 op=2 SEARCH RESULT tag=101 err=0 text= Apr 22 06:19:47 wuwell1 slapd[1430]: conn=-1 fd=27 closed Apr 22 06:19:55 wuwell1 slapd[1430]: conn=-1 fd=26 closed Apr 22 06:20:00 wuwell1 /USR/SBIN/CRON[11564]: (root) CMD (/usr/bin/fetchmail -a >>/var/log/fetchmail 2>&1 &) Apr 22 06:20:00 wuwell1 slapd[1430]: daemon: conn=2222 fd=26 connection from IP=127.0.0.1:9809 (IP=:: 34049) accepted. Apr 22 06:20:00 wuwell1 slapd[1432]: conn=2222 op=0 BIND dn="CN=ROOT,DC=WUWELL,DC=DE" method=128 Apr 22 06:20:00 wuwell1 slapd[1432]: conn=2222 op=0 RESULT tag=97 err=0 text= Apr 22 06:20:00 wuwell1 slapd[6733]: conn=2222 op=1 SRCH base="dc=wuwell,dc=de" scope=2 filter="(uid=root)" Apr 22 06:20:00 wuwell1 /USR/SBIN/CRON[11566]: (root) CMD ( test -x /usr/bin/ARKPER && /usr/bin/ARKPER 1>/dev/null 2>/dev/null) Apr 22 06:20:00 wuwell1 slapd[1430]: daemon: conn=2223 fd=27 connection from IP=127.0.0.1:9810 (IP=:: 34049) accepted. Apr 22 06:20:00 wuwell1 slapd[1433]: conn=2223 op=0 BIND dn="CN=ROOT,DC=WUWELL,DC=DE" method=128 Apr 22 06:20:00 wuwell1 slapd[1433]: conn=2223 op=0 RESULT tag=97 err=0 text= Apr 22 06:20:00 wuwell1 slapd[1432]: conn=2223 op=1 SRCH base="dc=wuwell,dc=de" scope=2 filter="(uid=root)" Apr 22 06:20:00 wuwell1 slapd[6733]: conn=2222 op=1 SEARCH RESULT tag=101 err=0 text= Apr 22 06:20:00 wuwell1 slapd[1433]: conn=2222 op=2 SRCH base="ou=sysusers,ou=nss,dc=wuwell,dc=de" scope=1 filter="(&(objectClass=posixGroup)(|(memberUid=root)(uniqueMember=uid=ro ot,ou=Sysusers,ou=NSS,dc=wuwell,dc=de)))" Apr 22 06:20:00 wuwell1 slapd[1433]: conn=2222 op=2 SEARCH RESULT tag=101 err=0 text= Apr 22 06:20:00 wuwell1 slapd[1432]: conn=2223 op=1 SEARCH RESULT tag=101 err=0 text= Apr 22 06:20:00 wuwell1 slapd[6733]: conn=2223 op=2 SRCH base="ou=sysusers,ou=nss,dc=wuwell,dc=de" scope=1 filter="(&(objectClass=posixGroup)(|(memberUid=root)(uniqueMember=uid=ro ot,ou=Sysusers,ou=NSS,dc=wuwell,dc=de)))" Apr 22 06:20:00 wuwell1 slapd[6733]: conn=2223 op=2 SEARCH RESULT tag=101 err=0 text= Apr 22 06:20:00 wuwell1 slapd[1430]: conn=-1 fd=27 closed Apr 22 06:20:14 wuwell1 slapd[1430]: conn=-1 fd=26 closed Apr 22 06:20:16 wuwell1 master[1147]: process 11548 exited, status 0 ... Und wenn ich halt mit ssh eingelogt bin und nun versuch passdw auszuführen bekomme ich folge Meldung: roland@wuwell1:~> passwd LDAP Password incorrect passwd: User not known to the underlying authentication module roland@wuwell1:~> Und in Massages stehl: ... Apr 22 06:24:23 wuwell1 slapd[1430]: daemon: conn=2231 fd=28 connection from IP=127.0.0.1:9838 (IP=:: 34049) accepted. Apr 22 06:24:23 wuwell1 slapd[1432]: conn=2231 op=0 BIND dn="CN=ROOT,DC=WUWELL,DC=DE" method=128 Apr 22 06:24:23 wuwell1 slapd[1432]: conn=2231 op=0 RESULT tag=97 err=0 text= Apr 22 06:24:23 wuwell1 slapd[6733]: conn=2231 op=1 SRCH base="ou=sysusers,ou=nss,dc=wuwell,dc=de" scope=1 filter="(&(objectClass=posixAccount)(uid=roland))" Apr 22 06:24:23 wuwell1 slapd[6733]: conn=2231 op=1 SEARCH RESULT tag=101 err=0 text= Apr 22 06:24:23 wuwell1 slapd[1433]: conn=2231 op=2 BIND dn="CN=ROOT,DC=WUWELL,DC=DE" method=128 Apr 22 06:24:23 wuwell1 slapd[1433]: conn=2231 op=2 RESULT tag=97 err=0 text= Apr 22 06:24:23 wuwell1 slapd[1432]: conn=2231 op=3 UNBIND Apr 22 06:24:23 wuwell1 slapd[1432]: conn=-1 fd=28 closed ... Ich weis nicht aber irgend wo muss ich noch einen Dreher haben. Vielleicht fällt die was dazu ein. Gruß Wolfgang