From owner-freebsd-net@FreeBSD.ORG Mon May 12 11:47:17 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D11F01065672 for ; Mon, 12 May 2008 11:47:17 +0000 (UTC) (envelope-from artem@aws-net.org.ua) Received: from alf.aws-net.org.ua (alf.aws-net.org.ua [85.90.196.192]) by mx1.freebsd.org (Postfix) with ESMTP id A09B38FC1B for ; Mon, 12 May 2008 11:47:16 +0000 (UTC) (envelope-from artem@aws-net.org.ua) Received: from [10.100.0.23] (vl-office.vl.net.ua [194.44.81.189]) by alf.aws-net.org.ua (8.14.2/8.14.2) with ESMTP id m4CB7DnW021604 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 12 May 2008 14:07:19 +0300 (EEST) (envelope-from artem@aws-net.org.ua) Message-ID: <482824E2.4000403@aws-net.org.ua> Date: Mon, 12 May 2008 14:07:14 +0300 From: Artyom Viklenko Organization: Art&Co. User-Agent: Thunderbird 2.0.0.14 (Windows/20080421) MIME-Version: 1.0 To: David Kramer References: <482804BF.1090506@coverity.com> In-Reply-To: <482804BF.1090506@coverity.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded STARTTLS authentication, not delayed by milter-greylist-4.0 (alf.aws-net.org.ua [192.168.32.61]); Mon, 12 May 2008 14:07:20 +0300 (EEST) X-Virus-Scanned: ClamAV version 0.93, clamav-milter version 0.93 on alf.aws-net.org.ua X-Virus-Status: Clean Cc: freebsd-net@freebsd.org Subject: Re: FreeBSD 4.9 - NIS Authentication Problem (SSHD Illegal User ERROR) X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 May 2008 11:47:17 -0000 David Kramer wrote: > **IF this is the wrong list for this topic please let me know which list > I should post network services issues to. > > I am relatively new to FreeBSD but have quite a bit of experience with > NIS on Linux. I am currently working on connecting a FreeBSD 4.9 client > connection to NIS server running on OpenBSD 3.9. The ypcat commands are > working and I can see the passwd and group files, however when I attempt > to login to the machine I keep getting SSHD Illegal User Errors. The > type of behavior I am seeing would be common on a Linux machine that > uses nssswitch.conf to state which objects to pass authentication > through, but its missing the nis value for passwd: or group:. Looking > through the FreeBSD website I see that nssswitch was introduced in > FreeBSD 5.X. For previous versions of FreeBSD and NIS, are there any > additional configurations that need to be done? Possibly with PAM? I > have the following values in my /etc/rc.conf files: Have you added special records to /etc/group and /etc/master.passwd files? It should be +::: in /etc/group and +::::::::: in /etc/master.passwd. Use vipw to edit password file. > > nisdomainname="myNISdomain" > nis_client_enable="YES" > > I have followed the FreeBSD NIS/YP Handbook configuration to the T, and > still get the illegal user authentication any insight would be greatly > appreciated. > > Thanks much, > > DK > -- Sincerely yours, Artyom Viklenko. ------------------------------------------------------- artem@aws-net.org.ua | http://www.aws-net.org.ua/~artem artem@viklenko.net | ================================ FreeBSD: The Power to Serve - http://www.freebsd.org