search for: use_first_pass

...single time. Putting this in the 'session' section it is flat out ignored. Here's my system-auth: auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_winbind.so use_first_pass use_first_pass auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_succeed_if.so uid < 100 quiet account sufficient /lib/security/$ISA/pam_winbind.so use_first_pass account...

...files nisplus /*/*/*/*/*/*/*/*/*/*/*/*/*/*/*/*/*/*/*/* /*/*/*/*/* nsswitch.conf /*/*/*/*/*/* #%PAM-1.0 auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_winbind.so use_first_pass auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_winbind.so use_first_pass password required /lib/security/$ISA/pam_cracklib.so retry=3 type= # Note: The above line is complet...

...guest account = nobody load printers = yes For what it's worth, my /etc/pam.d/samba file is as follows: auth required /lib/security/pam_env.so auth sufficient /lib/security/pam_unix.so likeauth nullok auth sufficient /lib/security/pam_winbind.so use_first_pass auth required /lib/security/pam_deny.so account required /lib/security/pam_unix.so account sufficient /lib/security/pam_winbind.so use_first_pass password required /lib/security/pam_cracklib.so retry=3 type= # Note: The above line is complete. There is nothing...

...y difference between these two bits of code (and I've not yet tested it) but I don't understand why this is failing... password requisite pam_cracklib.so retry=3 minlen=6 difok=3 debug password [user_unknown=ignore success=ok new_authtok_reqd=ok ignore=ignore default=bad] pam_ldap.so use_first_pass password required pam_unix.so use_first_pass nullok md5 debug password [user_unknown=ignore success=ok new_authtok_reqd=ok ignore=ignore default=bad] pam_smbpass.so use_first_pass audit any ideas? brad

...hane, User not known to the underlying authentication module. my login in /etc/pam.d is auth required pam_securetty.so #auth required pam_stack.so service=system-auth auth required pam_nologin.so auth sufficient pam_winbind.so auth required pam_pwdb.so use_first_pass shadow nullok #account required pam_stack.so service=system-auth account sufficient pam_winbind.so #password required pam_stack.so service=system-auth password required pam_pwdb.so use_first_pass shadow nullok #password required pam_winbind.so session required pam...

...U template shell = /bin/bash # don't trust other domains that are trusted # by the PDC allow trusted domains = no added the necessary stuff to /etc/pam.d/ssh, #%PAM-1.0 auth required pam_nologin.so auth sufficient pam_winbind.so debug auth required pam_unix.so use_first_pass shadow auth required pam_env.so # [1] account sufficient pam_winbind.so debug account required pam_unix.so use_first_pass session required pam_unix.so session optional pam_lastlog.so # [1] session optional pam_motd.so # [1] session optional pam_ma...

...his is quite handy when you want the user to be able to mount servers that are "kerberized". First make a backup copy of the file, edit the /etc/pam.d/authorization file and add two additional lines to the top: Insert these two additional lines: auth optional pam_krb5.so use_first_pass use_kcminit default_principal auth sufficient pam_krb5.so use_first_pass default_principal Use a Terminal.app text editor like 'vi' or 'nano', use a GUI editor like TextWrangler, BBEdit, or TextMate, or use this terminal command: /usr/bin/perl -pi -e 's/auth...

...-- #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok auth sufficient /lib/security/$ISA/pam_smb_auth.so use_first_pass nolocal auth sufficient /lib/security/$ISA/pam_winbind.so use_first_pass auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_winbind.so use_first_pass password required...

...his file is auto-generated. # User changes will be destroyed the next time authconfig is run. auth required pam_env.so auth sufficient pam_unix.so nullok try_first_pass auth requisite pam_succeed_if.so uid >= 200 quiet_success auth sufficient pam_sss.so use_first_pass auth required pam_deny.so auth required pam_env.so auth optional pam_gnome_keyring.so account required pam_unix.so broken_shadow account sufficient pam_succeed_if.so uid < 2000 quiet account [default=bad success=ok user_unknown=ignore] pam_sss...

...required /lib/security/$ISA/pam_stack.so service=system-auth service=system-auth #auth required /lib/security/pam_securetty.so #auth required /lib/security/pam_nologin.so #auth sufficient /lib/security/pam_winbind.so #auth required /lib/security/pam_pwdb.so #use_first_pass shadow nullok #account required /lib/security/pam_winbind.so account required /lib/security/$ISA/pam_permit.so session required /lib/security/$ISA/pam_permit.so =============================================================================== in pam.d gdm #%PAM-1.0 auth requ...

...p: files publickey: files bootparams: files automount: files aliases: files <EOF> debian uses /etc/pam.d/common-* files to hold pam settings which are @included into all other pam.d files. /etc/pam.d/common-account: account required pam_unix.so account sufficient pam_winbind.so use_first_pass <EOF> /etc/pam.d/common-auth: auth required pam_unix.so nullok_secure auth sufficient pam_winbind.so use_first_pass <EOF> /etc/pam.d/common-password: password required pam_unix.so nullok obscure min=4 max=8 md5 password sufficient pam_winbind.so use_first_pass &l...

Hi dovecot, I am using the debian dovecot packages on a system running LDAP. My /etc/pam.d/common-* looks like this, which simply means try /etc/passwd first, and try LDAP using the same password if it is failed. account [success=1 default=ignore] pam_unix.so account required pam_ldap.so use_first_pass account required pam_permit.so auth [success=1 default=ignore] pam_unix.so auth required pam_ldap.so use_first_pass auth required pam_permit.so session [success=1 default=ignore] pam_unix.so session required pam_ldap.so use_first_pass session required pam_mkhomedir.so skel=/etc/skel umask=...

...permissions that don't allow files to be written under the user id. When logging in via telnet, the directories are created as they are supposed to be. Here are my pam configurations for login, samba and xdm: XDM: #%PAM-1.0 auth sufficient pam_winbind.so auth sufficient pam_unix2.so use_first_pass nullok #set_secrpc account sufficient pam_winbind.so account required pam_unix2.so #password required pam_pwcheck.so nullok password required pam_unix2.so #nullok use_first_pass use_authtok strict=no session required pam_unix2.so debug # trace or none session r...

...compat winbind hosts: files dns networks: files protocols: db files services: db files ethers: db files rpc: db files netgroup: nis ----------------------- ----etc/pam.d/winbindd---- account sufficient /lib/security/pam_winbind.so use_first_pass auth sufficient /lib/security/pam_winbind.so use_first_pass password sufficient /lib/security/pam_winbind.so use_first_pass session sufficient /lib/security/pam_winbind.so use_first_pass ------------------ What's wrong with my conf? best regards. Gui...

...idmap uid = 10000-20000 idmap gid = 10000-20000 template shell = /bin/bash winbind use default domain = Yes winbind trusted domains only = Yes pam_login(client) ------------------------------------ #%PAM-1.0 auth sufficient /lib/security/pam_unix.so use_first_pass auth sufficient /lib/security/pam_winbind.so auth required /lib/security/pam_nologin.so account sufficient /lib/security/pam_winbind.so use_first_pass use_authtok password sufficient pam_winbind.so use_first_pass use_authtok session sufficient pam_winbind.so use...

...winbind nis aliases: files winbind ------------/etc/pam.d/login-------------- #%PAM-1.0 auth requisite pam_unix2.so nullok #set_secrpc auth required pam_securetty.so auth required pam_nologin.so auth sufficient pam_winbind.so use_first_pass use_authtok #auth required pam_homecheck.so auth required pam_env.so auth required pam_mail.so account required pam_unix2.so account sufficient pam_winbind.so use_first_pass use_authtok password required pam_pwcheck.so nullok p...

...P SIGNED MESSAGE----- Hash: SHA1 Can anyone reproduce this on a Solaris 8 system with 4.2p1: openssh is configured to use PAM and sshd_config has "UsePam" set to "yes" pam.conf has something like this: other auth required pam_get_authtok other auth sufficient pam_krb5.so.1 use_first_pass other auth required pam_unix.so.1 use_first_pass Now, If I log in via ssh as a user who has a Kerberos principal, everything works just fine. If a local account is used, sshd segfaults. If I remove the pam_krb5.so.1 reference auth line, the local user can successfully authenticate. I'll gath...

...an Ubuntu 10.04: https://help.ubuntu.com/community/ActiveDirectoryWinbindHowto Configured PAM using pam-auth-update. common-auth is: auth [success=2 default=ignore] pam_unix.so nullok_secure auth [success=1 default=ignore] pam_winbind.so krb5_auth krb5_ccache_type=FILE cached_login use_first_pass common-password password [success=2 default=ignore] pam_unix.so obscure sha512 password [success=1 default=ignore] pam_winbind.so use_authtok use_first_pass nsswitch.conf passwd: files winbind group: files winbind shadow: files winbind hosts: files dns What shou...

...pam_stack.so service=system-auth session required pam_loginuid.so And finally, /etc/pam.d/system-auth auth required /lib/security/$ISA/pam_env.so auth sufficient /lib/security/$ISA/pam_unix.so likeauth nullok #auth sufficient /lib/security/$ISA/pam_krb5.so use_first_pass auth sufficient /lib/security/$ISA/pam_winbind.so use_first_pass auth required /lib/security/$ISA/pam_deny.so account required /lib/security/$ISA/pam_unix.so account sufficient /lib/security/$ISA/pam_succeed_if.so uid < 100 quiet #account [default=bad s...

...m_aix OTHER password required /usr/lib/security/pam_aix # Session management sshd session required /usr/lib/security/pam_aix OTHER session required /usr/lib/security/pam_aix OTHER auth required /usr/lib/security/pam_winbind.so debug use_first_pass unknown_ok DOMAIN OTHER account required /usr/lib/security/pam_winbind.so debug use_first_pass unknown_ok DOMAIN OTHER session required /usr/lib/security/pam_winbind.so debug use_first_pass unknown_ok DOMAIN OTHER password required /usr/lib/security/pam_winbind.so debug us...