From owner-freebsd-questions Wed Jun 6 16: 3:22 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mb.dnsdata.com (adsl-64-166-7-170.dsl.snfc21.pacbell.net [64.166.7.170]) by hub.freebsd.org (Postfix) with ESMTP id 808C137B401 for ; Wed, 6 Jun 2001 16:03:19 -0700 (PDT) (envelope-from bob.fayne@bea.com) Received: from mjollnir.bea.com (ext008264.bea.com [63.96.168.53] (may be forged)) by mb.dnsdata.com (8.11.3/8.11.3) with ESMTP id f56N3IP23589 for ; Wed, 6 Jun 2001 16:03:18 -0700 (PDT) (envelope-from bob.fayne@bea.com) Message-Id: <5.1.0.14.2.20010606160245.03c28020@san-jose.beasys.com> X-Sender: bob@san-jose.beasys.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Wed, 06 Jun 2001 16:03:12 -0700 To: freebsd-questions@freebsd.org From: Bob Fayne Subject: pam_radius and template_user Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I've been trying to get the 'template_user=username' option for pam_radius to work. When a user is not in the main password file, there is _no attempt_ to contact the radius server(s). I'm running 4.3-RELEASE. This is what my pam.conf looks like. sshd auth sufficient pam_skey.so sshd auth sufficient pam_radius.so try_first_pass template_user=me sshd auth required pam_unix.so try_first_pass sshd session required pam_permit.so pam_radius(8) says this: template_user=username specifies a user whose passwd(5) entry will be used as a tem- plate to create the session environment if the supplied user- name doesn't exist in local password database. Can someone point me in the right direction to get this working? Thanks in advance. :) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message