Date: Tue, 12 Oct 2004 18:03:25 +0300 From: Vladimir Voronin <vvs@teleportsv.net> To: freebsd-net@freebsd.org Subject: problem with pam authentication via radius Message-ID: <416BF23C.8070802@teleportsv.net>
next in thread | raw e-mail | index | archive | help
I try to make PAM authentication on FreeBSD-server (FreeBSD 5.3-BETA1) using RADIUS (freeradius-0.9.3_1) and RADIUS using LDAP (openldap-server-2.2.14). /etc/pam.d/sshd : auth sufficient pam_radius.so auth required pam_nologin.so no_warn auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local auth required pam_unix.so no_warn try_first_pass account sufficient pam_radius.so account required pam_login_access.so account required pam_unix.so session required pam_permit.so password required pam_unix.so no_warn try_first_pass There are not any problem when I try authenticate user, who exists in /etc/passwd. PAM asks RADIUS and RADIUS compares data with data in LDAP-database. But when authenticate user who exists only in LDAP-database (and there isn't in /etc/passwd on FreeBSD-server) PAM isn't ask RADIUS (nothing in logs of RADIUS). Why this situation take place? How to fix this problem?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?416BF23C.8070802>