Displaying 20 results from an estimated 33 matches for "pam_authtok_check".
2004 Jul 28
3
Solaris password requirements not enforced
Hi,
The Solaris password requirements like
a. no empty password
b. minimum 6 chars
etc for a regualr user are not enforced when a password expired user is
changing password at the SSH login prompt.
The version of openSSH I am using is 3.8.1 and Solaris 8 is where the
sshd is running.
Is anybody aware of this problem?
Is there some configuration option I can use to enforce these password
2005 Aug 29
1
dovecot/Active Directory/KRB client (OT)
...account required pam_unix_account.so.1 debug
other account required pam_krb5.so.1 debug
other session required pam_unix_session.so.1 debug
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password sufficient pam_krb5.so.1
other password required pam_authtok_store.so.1
I hope this helps.
Jeff Earickson
Colby College
2006 Sep 26
1
password sync unix
...unix_cred.so.1
samba auth required pam_unix_auth.so.1
samba account required
pam_unix_account.so.1
samba password required pam_dhkeys.so.1
samba password requisite pam_authtok_get.so.1
shadow md5
use_authtok try_first_pass
samba password requisite
pam_authtok_check.so.1
samba password required
pam_authtok_store.so.1
samba password requisite
/usr/local/samba/lib/security/pam_smbpass.so nullok
use_authtok
try_first_pass debug
smbconf=/usr/local/samba/lib/smb.conf
samba session required
pam_unix_session.so.1
smb.conf
securit...
2008 Jan 08
0
solaris9+winbind+getent
...sr/lib/security/pam_winbind.so
other session required pam_unix_session.so.1
other session sufficient /usr/lib/security/pam_winbind.so
try_first_pass
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optional pam_krb5.so.1 try_first_pass
#cron account optiona...
2004 Jan 28
0
PAM winbind auth (ADS) WORKS! (Solaris 9) THANKS ALOT!
.../usr/lib/security/pam_winbind.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optiona...
2006 Jan 26
1
pam_winbind.so user expired password config for Solaris /etc/pam.conf
...unt.so.1 debug
dtlogin account required pam_winbind.so
use_authtok
#dtlogin password sufficient pam_dhkeys.so.1
debug
#dtlogin password requisite
pam_authtok_get.so.1 debug
#dtlogin password requisite
pam_authtok_check.so.1 debug
#dtlogin password sufficient
pam_authtok_store.so.1 debug
dtlogin password required pam_winbind.so
debug use_authtok
dtsession auth sufficient pam_winbind.so
debug try_first_pass
dtsession auth requi...
2002 Oct 31
0
pam authentication solaris9
...ion management
#
other session required pam_unix_session.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos) #
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optional pam_krb5.so.1 try_first_pass
#cron account op...
2004 Aug 20
1
Fw: winbind, active directory and solaris 8
...n required pam_unix_session.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password
management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optiona...
2006 Feb 01
0
SAMBA 3.0.21b expired password issue for Solaris 9 - perhaps a bug in winbind or /etc/pam.conf misconfigure
...pam_winbind.so
debug
sshd password sufficient pam_winbind.so
debug use_authtok
sshd password required pam_dhkeys.so.1
debug
sshd password requisite pam_authtok_get.so.1
debug
sshd password requisite pam_authtok_check.so.1
debug
sshd password required pam_authtok_store.so.1
debug
sshd session sufficient pam_winbind.so
debug
sshd session required pam_unix.so.1
debug
Recommendations? File a mozilla bug? Does the sshd section of pam.con...
2006 Jul 10
1
OpenSSH 4.3p2 on Solaris 10 and PAM
...roles.so.1
other account binding pam_unix_account.so.1 server_policy
other account required pam_ldap.so.1
other session required pam_unix_session.so.1
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1 server_policy
==CUT==
This works fine with Sun SSH 1.1. Access is granted and revoked
correctly, even if the user has placed his public key in .ssh/authorized
keys.
Using OpenSSH 4.3p2 with the above configuration this PAM module never...
2005 Sep 23
0
root login using /etc/shadow bypassing winbind / ADS security
...n required pam_unix_session.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password
management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optiona...
2005 Mar 21
0
Winbind and openSSH problem on Solaris 8/Sparc
...quired pam_unix_session.so.1
#
# Password management
#
#other password sufficient /usr/lib/security/pam_winbind.so
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
dtsession auth requisite pam_authtok_get.so.1
dtsession auth required pam_dhkeys.so.1
dtsession auth required pam_unix_auth.so.1
#
# Support for Kerberos V5 authentication (uncomment t...
2003 Dec 15
1
Solaris Winbind LDAP pam_mkhomedir.so
Dear list,
How do I test whether I have access to my winbind LDAP backend from my
Solaris 9 machine? My LDAP database is held on a Redhat 9.0 machine also
running Samba 3.0.0.
I know winbind works because getent and wbinfo show up my NT users and
groups.
I would also like to have people log into my Solaris 9 machine with their NT
usernames, I have this working on Redhat already but Solaris is
2007 Jan 05
0
troubles with telnet sessions under Solaris8 as AD member with winbind V3.0.23d
...rity/pam_winbind.so.1
debug
other session sufficient pam_unix_session.so.1 debug
other session sufficient /usr/local/lib/security/pam_winbind.so.1
debug
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
other password sufficient /usr/local/lib/security/pam_winbind.so.1
telnet auth requisite pam_authtok_get.so.1
telnet auth sufficient pam_dhkeys.so.1
telnet auth sufficient pam_unix...
2004 Aug 19
0
winbind, active directory and solaris 8
...n required pam_unix_session.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password
management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optiona...
2006 Jul 25
1
Strange problem - Samba 3.0.23 on Solaris 9 Sparc
...her session sufficient /usr/lib/security/pam_winbind.so
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optional pam_krb5.so.1 try_first_pass
#cron account o...
2005 Jun 21
0
Active directory authentication and Solaris 9 problems
...n required pam_unix_session.so.1
#
# Default definition for Password management
# Used when service name is not explicitly mentioned for password management
#
other password required pam_dhkeys.so.1
other password requisite pam_authtok_get.so.1
other password requisite pam_authtok_check.so.1
other password required pam_authtok_store.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional pam_krb5.so.1 try_first_pass
#login auth optional pam_krb5.so.1 try_first_pass
#other auth optiona...
2006 Sep 25
1
Fwd: RE: Welcome to the "samba" mailing list
...unix_cred.so.1
samba auth required pam_unix_auth.so.1
samba account required
pam_unix_account.so.1
samba password required pam_dhkeys.so.1
samba password requisite pam_authtok_get.so.1
shadow md5
use_authtok try_first_pass
samba password requisite
pam_authtok_check.so.1
samba password required
pam_authtok_store.so.1
samba password requisite
/usr/local/samba/lib/security/pam_smbpass.so nullok
use_authtok
try_first_pass debug
smbconf=/usr/local/samba/lib/smb.conf
samba session required
pam_unix_session.so.1
smb.conf
securit...
2007 Dec 05
1
AD returns only one group for all users
Dear list,
I'm trying to get a Thumper (Sun Fire X4500) to play nice with AD so
that we can offer a nearline storage service. Since many of our users
will have multiple group memberships, it's imperative that samba be able
to recurse through the groups that a user is a member of to determine if
they have access to a resource.
What happens instead is that every user who authenticates is
2003 Oct 12
4
[PATCH]: Call pam_chauthtok from keyboard-interactive.
Hi All.
This patch calls pam_chauthtok() to change an expired password via PAM
during keyboard-interactive authentication (SSHv2 only). It is tested on
Redhat 8 and Solaris 8.
In theory, it should have simply been a matter of calling pam_chauthtok
with the PAM_CHANGE_EXPIRED_AUTHTOK flag, it'd only change the password is
if it's expired, right? From the Solaris pam_chauthtok man page: