search for: debug_state

Hi, Attached patch implements the VMCB cleanbits SVM feature. Upcoming AMD CPUs introduce them and they are basically hints for the CPU which vmcb values can be re-used from the previous VMRUN instruction. Each bit represents a certain set of fields in the VMCB. Setting a bit tells the cpu it can re-use the cached value from the previous VMRUN. Clearing a bit tells the cpu to reload the values

Signed-off-by: Christoph Egger <Christoph.Egger@amd.com> -- ---to satisfy European Law for business letters: Advanced Micro Devices GmbH Einsteinring 24, 85609 Dornach b. Muenchen Geschaeftsfuehrer: Alberto Bozzo, Andrew Bowd Sitz: Dornach, Gemeinde Aschheim, Landkreis Muenchen Registergericht Muenchen, HRB Nr. 43632 _______________________________________________ Xen-devel mailing list

...1 sshd[26078]: Accepted publickey for nathan from 1.2.3.4 port 61767 ssh2 System-auth-ac: [root at testbox01 pam.d]# cat system-auth-ac auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_winbind.so debug debug_state use_first_pass require_membership_of=testbox02_access_sg, testbox02_2_access_sg auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_succeed_if.so uid < 100 quiet account required /lib/security/$ISA/pam_winbind.so...

...tication as show on the wiki. Debian normaly does not have /etc/security/pam_winbind.conf, check if its there if so backup it remove it. Check if these packages are installed. libpam-krb5 libpam-winbind libnss-winbind Now edit : /usr/share/pam-configs/winbind And change it to : (see debug debug_state) Auth: [success=end default=ignore] pam_winbind.so krb5_auth krb5_ccache_type=FILE cached_login try_first_pass debug debug_state Auth-Initial: [success=end default=ignore] pam_winbind.so krb5_auth krb5_ccache_type=FILE cached_login debug debug_state Run : pam-auth-update An...

...oenv # [1] session required pam_limits.so @include common-password root at cafs01tst:~# cat /etc/pam.d/common-auth auth required pam_env.so auth sufficient pam_unix.so try_first_pass nullok_secure debug auth sufficient pam_winbind.so try_first_pass use_authtok \ krb5_auth cached_login debug debug_state auth required pam_deny.so root at cafs01tst:~# cat /etc/pam.d/common-account account required pam_unix.so debug account sufficient pam_localuser.so account sufficient pam_succeed_if.so uid < 10000 quiet account sufficient pam_winbind.so krb5_auth cached_login debug \ debug_state account require...

...t at pi-dc:~# ls -l /lib/arm-linux-gnueabihf/security/pam_winbind* lrwxrwxrwx 1 root root 44 Jul 21 08:23 /lib/arm-linux-gnueabihf/security/pam_winbind.so -> /usr/local/samba/lib/security/pam_winbind.so > Now edit : > /usr/share/pam-configs/winbind > > And change it to : (see debug debug_state) > Auth: > [success=end default=ignore] pam_winbind.so krb5_auth > krb5_ccache_type=FILE cached_login try_first_pass debug debug_state > Auth-Initial: > [success=end default=ignore] pam_winbind.so krb5_auth > krb5_ccache_type=FILE cached_login debug debug_sta...

...che time = 10 winbind enum groups = yes winbind enum users = yes winbind nested groups = yes winbind refresh tickets = yes winbind rpc only = yes kinit for the testuser at DOMREMOTE.LOCAL works correctly. This is on Ubuntu 14.04 with winbind 4.3.11+dfsg-0ubuntu0.14.04.4. Enabling debug debug_state for pam_winbind auth configuration results in these log messages for an ssh login attempt, I get a similar trace if I try a local logon. sshd[9567]: Invalid user DOMREMOTE\\testuser from 192.168.1.1 sshd[9567]: input_userauth_request: invalid user DOMREMOTE\\\\testuser [preauth] sshd[9567]: Postpo...

...optional pam_mkhomedir.so session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid session required pam_unix.so session optional pam_krb5.so pam_winbind.conf: [global] # turn on debugging ;debug = no # turn on extended PAM state debugging ;debug_state = no # request a cached login if possible # (needs "winbind offline logon = yes" in smb.conf) cached_login = yes # authenticate using kerberos ;krb5_auth = yes # when using kerberos, request a "FILE" krb5 credential cache type # (leave empty to just do krb5 authentication but...

Thanks Louis. Results below. > Hai, > > I've reading this thread more closely. > > I suggest you try the followoing. > > Check the servers hardware clock in the bios first. > Set these within 5 min, if they are not about the same. > There no RTC in the pi; the other DC is running in a VM with RTC set to UTC. I have disabled the guest from getting the time

...vel = 0 use kerberos keytab = True log level = 3 log file = /var/log/samba/%m [public] path = /perso/public read only = no /etc/pam.d/common.auth auth sufficient pam_winbind.so krb5_auth krb5_ccache_type=FILE debug debug_state cached_login /var/log/auth.log Feb 25 12:23:46 etusrv06-bis sshd[23471]: pam_winbind(sshd:auth): [pamh: 0xb7fd5d28] ENTER: pam_sm_authenticate (flags: 0x0001) Feb 25 12:23:46 etusrv06-bis sshd[23471]: pam_winbind(sshd:auth): [pamh: 0xb7fd5d28] STATE: ITEM(PAM_SERVICE) = "sshd&quo...

...try_first_pass password required pam_unix.so no_warn try_first_pass Here is /etc/security/pam_winbind.conf # # pam_winbind configuration file # # /etc/security/pam_winbind.conf # [global] # turn on debugging ;debug = no debug = yes # turn on extended PAM state debugging ;debug_state = no # request a cached login if possible # (needs "winbind offline logon = yes" in smb.conf) ;cached_login = no # authenticate using kerberos ;krb5_auth = no # when using kerberos, request a "FILE" krb5 credential cache type # (leave empty to just do krb5 authenticati...