[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sheflug] Winbindd and Pam

To: "'shef-lug [at] xxxxxxxxxxxxxxxxxxx'" <shef-lug [at] xxxxxxxxxxxxxxxxxxx>
Subject: [Sheflug] Winbindd and Pam
From: "Dawson, Alan" <DawsonA [at] xxxxxxxxxxxxxxxxxx>
Date: Fri, 10 Dec 2004 10:09:04 -0000
Delivered-to: shef-lug [at] list.sheflug.org.uk
List-help: <mailto:shef-lug-request [at] list.sheflug.org.uk?subject=help>
List-id: Sheflug <shef-lug.list.sheflug.org.uk>
List-post: <mailto:shef-lug [at] list.sheflug.org.uk>
List-subscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=subscribe>
List-unsubscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=unsubscribe>
Reply-to: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Sender: shef-lug-admin [at] xxxxxxxxxxxxxxxxxxx

I have winbindd and samba 3 running on a SUSE 9.1 based PC in the hope of
being of able 
to do something similar to the concepts mentioned here.

http://krom.meiring.org.uk/sheflug/mailarchive/2004/05/msg00032.html

but I'm stuck getting the Windows users able to log on.

wbinfo -u
wbinfo -g 

list the users and groups in the windows domain quite happily, and I have
modified 
pam.d/login to use winbindd.  But must be missing something :-(

in /var/log/messages I get

Dec  9 21:07:29 SuSE91 pam_winbind[11887]: user 'domain+user' granted access
Dec  9 21:07:29 SuSE91 login[11887]: Permission denied 

so something is working OK

pam.d/login

has the following
#%PAM-1.0
auth sufficient pam_unix2.so    nullok
auth sufficient pam_winbind.so use_first_pass use_authtok
auth required   pam_securetty.so
auth required   pam_nologin.so
auth required   pam_env.so
auth required   pam_mail.so
account sufficient      pam_unix2.so
account sufficient      pam_winbind.so use_first_pass use_authtok
password required       pam_pwcheck.so  nullok
password sufficient     pam_unix2.so    nullok use_first_pass use_authtok
password sufficient     pam_winbind.so  use_first_pass use_authtok
session sufficient      pam_unix2.so    none
session sufficient      pam_winbind.so  use_first_pass use_authtok
session required        pam_limits.so

___________________________________________________________________

Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html

  GNU the choice of a complete generation.

Follow-Ups:
- Re: [Sheflug] Winbindd and Pam
  - From: Rob Keeling

Prev by Date: Re: [Sheflug] Dell flooding the market .....
Next by Date: Re: [Sheflug] Winbindd and Pam
Previous by thread: RE: [Sheflug] Re: Dell flooding the market .....
Next by thread: Re: [Sheflug] Winbindd and Pam
Index(es):
- Date
- Thread