how to debug sssd

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



i m trying to setup sssd on a fedora 12 machine

i m carefully following the instructions of this page

https://fedorahosted.org/sssd/wiki/HOWTO_Configure

then i m trying to configure the LOCAL provider.

first of all on this page it wasn't written which pam file i should modify
as i make the test with sshd i have modify the password-auth-ac file as it is mentionned.

here it is

#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.

auth        required      pam_env.so
auth        sufficient    pam_unix.so nullok try_first_pass
auth        requisite     pam_succeed_if.so uid >= 500 quiet
auth        sufficient    pam_sss.so use_first_pass
auth        required      pam_deny.so

account     required      pam_unix.so
account     sufficient    pam_localuser.so
account     sufficient    pam_succeed_if.so uid < 500 quiet
account     [default=bad success=ok user_unknown=ignore] pam_sss.so
account     required      pam_permit.so

password    requisite     pam_cracklib.so try_first_pass retry=3
password sufficient pam_unix.so sha512 shadow nullok try_first_pass use_authtok
password    sufficient    pam_sss.so use_authtok
password    required      pam_deny.so

session    required    pam_mkhomedir.so skel=/etc/skel/ umask=0022
session     optional      pam_keyinit.so revoke
session     required      pam_limits.so
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
session     sufficient    pam_sss.so
session     required      pam_unix.so



i create my local user glupglup
but when i try to ssh i got the following message

ssh glupglup@localhost
The authenticity of host 'localhost (::1)' can't be established.
RSA key fingerprint is bc:78:fe:ef:4d:e3:93:10:cc:ff:7e:e6:75:a4:25:53.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'localhost' (RSA) to the list of known hosts.
glupglup@localhost's password:
Connection closed by ::1


i look in the /var/log/secure file
i have
Nov 25 18:00:16 localhost unix_chkpwd[26069]: check pass; user unknown
Nov 25 18:00:16 localhost unix_chkpwd[26069]: password check failed for user (glupglup) Nov 25 18:00:16 localhost sshd[26067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.159.21.158 user=glupglup Nov 25 18:00:16 localhost sshd[26067]: pam_sss(sshd:auth): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.159.21.158 user=glupglup Nov 25 18:00:16 localhost unix_chkpwd[26070]: could not obtain user info (glupglup) Nov 25 18:00:16 localhost sshd[26067]: pam_sss(sshd:account): authentication success; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.159.21.158 user=glupglup Nov 25 18:00:16 localhost sshd[26067]: Failed password for glupglup from 157.159.21.158 port 35169 ssh2 Nov 25 18:00:16 localhost sshd[26068]: fatal: Access denied for user glupglup by PAM account configuration

Has someone already succed in configuring sssd?

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux