search for: use_authok

Hi, Got some issues regarding Kerberos and Directory Server and hope someone can help me out. Used these for the configiruation : http://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-kerberos.html http://www.redhat.com/docs/manuals/dir-server/8.1/install/index.html Server : CentOS 5.4 with Kerberos and Directory Server installed Client : CentOS 5.4 I use putty to connect to the client,

...migrate account required pam_unix.so account optional pam_permit.so password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3 password required pam_unix.so try_first_pass use_authtok nullok sha512 shadow password optional pam_permit.so password required pam_smbpass.so nullok use_authok try_first_pass session required pam_limits.so session required pam_env.so session required pam_unix.so session optional pam_permit.so system-password: password requisite pam_unix.so nullok obscure min=4 max=8 md5 password required pam_smbpass.so nullok try_first_pass Thanks kindly! Best regard...

...it impossible for any user to log onto a lab PC (and therefore not allowing them to access any other means of logging into the machine?) Also, one final question... the pam.conf entries: auth optional /lib/security/pam_smbpass.so migrate ...and... password required /lib/security/pam_smbpass.so use_authok try_first_pass / migrate ...do these only affect first logins, or does this mean any user who properly authenticates on our machines (via telnet, ssh) will have their password synced with smbpasswd? BASICALLY, to sum up... this is what I would /like/ to have happen, and maybe someone can tell me...

...deny.so account required /lib/security/pam_unix.so account sufficient /lib/security/pam_ldap.so password required /lib/security/pam_cracklib.so retry=3 password sufficient /lib/security/pam_unix.so nullok md5 shadow use_authtok password sufficient /lib/security/pam_ldap.so use_authok password required /lib/security/pam_deny.so session required /lib/security/pam_limits.so session required /lib/security/pam_unix.so session required /lib/security/pam_ldap.so As an ldap authenticated user I can change the unix password with passwd and the samba password...