Just to answer my own question: Den 16-09-2011 22:35, Klaus Vink Slott skrev:
I am in the process of changing my OpenSUSE 11.3 system to use NFS4 and kerberos. [snip] ... user login based on kerberos now works perfectly.
But I now have a problem that local system accounts in /etc/password no longer are able to login. This is a problem as this prevents cron to run as any other user that root.
Comparing with a working system I found that in the pam file common-account-pc was missing the "ignore_unknown_principals" on the Kerberos line. The full line should read: account required pam_krb5.so use_first_pass ignore_unknown_principals I have no idea why the option was missing. Originally I modified pam by running "pam-config --add --krb5" The script must have failed, maybe I ran the script in wrong order - before the Kerberos libraries was installed. -- Have a nice weekend! Klaus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org