[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Problem getting AFS token



Hello,

I´m using Linux-PAM-0.66 together with the login executable which comes
with SimplePAMApps-0.58 and SuSE 6.0, kernel 2.2.3. To obtain
automatically an AFS token during login I use the pam_linux_afs.so
library of Tobias Schaefer (which comes with pam_linux_afs-0.2).
The authentication against our kas server works perfect. However no
token is generated during login. Debugging the PAM mechanism, using
pam_log I see the following:


Wed Mar 10 16:26:18 1999 pam_log: pam_log: pam_sm_setcred
Wed Mar 10 16:26:18 1999 pam_log:     Arguments:
Wed Mar 10 16:26:18 1999 pam_log:         log_authok
Wed Mar 10 16:26:18 1999 pam_log:         no_syslogWed Mar 10 16:26:18
1999 pam_log:         logfile
Wed Mar 10 16:26:18 1999 pam_log:         /tmp/pam.log
Wed Mar 10 16:26:18 1999 pam_log:     PAM environment:
Wed Mar 10 16:26:18 1999 pam_log:         TERM=linux
Wed Mar 10 16:26:18 1999 pam_log:         PATH=/bin:/usr/bin
Wed Mar 10 16:26:18 1999 pam_log:         LOGNAME=a2825af
Wed Mar 10 16:26:18 1999 pam_log:         HOME=/home/a2825af
Wed Mar 10 16:26:18 1999 pam_log:     Flags:
Wed Mar 10 16:26:18 1999 pam_log:         PAM_CRED_DELETE
Wed Mar 10 16:26:18 1999 pam_log:     username = 'a2825af'
Wed Mar 10 16:26:18 1999 pam_log:     service = 'login'
Wed Mar 10 16:26:18 1999 pam_log:     tty = '/dev/tty3'
Wed Mar 10 16:26:18 1999 pam_log:     remote host = 'localhost'
Wed Mar 10 16:26:18 1999 pam_log:     remote user = '[system]'
Wed Mar 10 16:26:18 1999 pam_log: pam_log: pam_sm_close_session
Wed Mar 10 16:26:18 1999 pam_log:     Arguments:
Wed Mar 10 16:26:18 1999 pam_log:         log_authok
Wed Mar 10 16:26:18 1999 pam_log:         no_syslog
Wed Mar 10 16:26:18 1999 pam_log:         logfile
Wed Mar 10 16:26:18 1999 pam_log:         /tmp/pam.log
Wed Mar 10 16:26:18 1999 pam_log:     PAM environment:
Wed Mar 10 16:26:18 1999 pam_log:         TERM=linux
Wed Mar 10 16:26:18 1999 pam_log:         PATH=/bin:/usr/bin
Wed Mar 10 16:26:18 1999 pam_log:         LOGNAME=a2825af
Wed Mar 10 16:26:18 1999 pam_log:         HOME=/home/a2825af
Wed Mar 10 16:26:18 1999 pam_log:     Flags:
Wed Mar 10 16:26:18 1999 pam_log:     username = 'a2825af'
Wed Mar 10 16:26:18 1999 pam_log:     service = 'login'
Wed Mar 10 16:26:18 1999 pam_log:     tty = '/dev/tty3'
Wed Mar 10 16:26:18 1999 pam_log:     remote host = 'localhost'
Wed Mar 10 16:26:18 1999 pam_log:     remote user = '[system]'
Wed Mar 10 16:26:22 1999 pam_log: pam_log: pam_sm_authenticate
Wed Mar 10 16:26:22 1999 pam_log:     Arguments:
Wed Mar 10 16:26:22 1999 pam_log:         log_authtok
Wed Mar 10 16:26:22 1999 pam_log:         no_syslog
Wed Mar 10 16:26:22 1999 pam_log:         logfile
Wed Mar 10 16:26:22 1999 pam_log:         /tmp/pam.log
Wed Mar 10 16:26:22 1999 pam_log:     PAM environment:
Wed Mar 10 16:26:22 1999 pam_log:         TERM=linux
Wed Mar 10 16:26:22 1999 pam_log:         PATH=/bin:/usr/bin
Wed Mar 10 16:26:22 1999 pam_log:     Flags:
Wed Mar 10 16:26:22 1999 pam_log:     username = 'a2825af'
Wed Mar 10 16:26:22 1999 pam_log:     service = 'login'
Wed Mar 10 16:26:22 1999 pam_log:     tty = '/dev/tty3'
Wed Mar 10 16:26:22 1999 pam_log:     remote host = 'localhost'
Wed Mar 10 16:26:22 1999 pam_log:     remote user = '[system]'
Wed Mar 10 16:26:24 1999 pam_log: pam_log: pam_sm_open_session
Wed Mar 10 16:26:24 1999 pam_log:     Arguments:
Wed Mar 10 16:26:24 1999 pam_log:         log_authtok
Wed Mar 10 16:26:24 1999 pam_log:         no_syslog
Wed Mar 10 16:26:24 1999 pam_log:         logfile
Wed Mar 10 16:26:24 1999 pam_log:         /tmp/pam.log
Wed Mar 10 16:26:24 1999 pam_log:     PAM environment:
Wed Mar 10 16:26:24 1999 pam_log:         TERM=linux
Wed Mar 10 16:26:24 1999 pam_log:         PATH=/bin:/usr/bin
Wed Mar 10 16:26:24 1999 pam_log:     Flags:
Wed Mar 10 16:26:24 1999 pam_log:     username = 'a2825af'
Wed Mar 10 16:26:24 1999 pam_log:     service = 'login'
Wed Mar 10 16:26:24 1999 pam_log:     tty = '/dev/tty3'
Wed Mar 10 16:26:24 1999 pam_log:     remote host = 'localhost'
Wed Mar 10 16:26:24 1999 pam_log:     remote user = '[system]'
Wed Mar 10 16:26:24 1999 pam_log: pam_log: pam_sm_setcred
Wed Mar 10 16:26:24 1999 pam_log:     Arguments:
Wed Mar 10 16:26:24 1999 pam_log:         log_authtok
Wed Mar 10 16:26:24 1999 pam_log:         no_syslog
Wed Mar 10 16:26:24 1999 pam_log:         logfile
Wed Mar 10 16:26:24 1999 pam_log:         /tmp/pam.log
Wed Mar 10 16:26:24 1999 pam_log:     PAM environment:
Wed Mar 10 16:26:24 1999 pam_log:         TERM=linux
Wed Mar 10 16:26:24 1999 pam_log:         PATH=/bin:/usr/bin
Wed Mar 10 16:26:24 1999 pam_log:         LOGNAME=a2825af
Wed Mar 10 16:26:24 1999 pam_log:         HOME=/home/a2825af
Wed Mar 10 16:26:24 1999 pam_log:     Flags:
Wed Mar 10 16:26:24 1999 pam_log:         PAM_CRED_ESTABLISH
Wed Mar 10 16:26:24 1999 pam_log:     username = 'a2825af'
Wed Mar 10 16:26:24 1999 pam_log:     service = 'login'
Wed Mar 10 16:26:24 1999 pam_log:     tty = '/dev/tty3'
Wed Mar 10 16:26:24 1999 pam_log:     remote host = 'localhost'
Wed Mar 10 16:26:24 1999 pam_log:     remote user = 'system'

So the line "remote user = 'system'" seems to be the origin of my
problem.

Has anybody solved this problem? Any ideas will be welcomed.

My /etc/pam.d/login file looks like:

#%PAM-1.0
auth     required   /lib/security/pam_log.so log_authtok no_syslog
logfile /tmp/pam.log
auth     sufficient       /lib/security/pam_linux_afs.so try_first_pass
setpag ignore_root
auth     required       /lib/security/pam_unix_auth.so
account  required       /lib/security/pam_unix_acct.so
password required       /lib/security/pam_unix_passwd.so
session  required       /lib/security/pam_log.so log_authtok no_syslog
logfile /tmp/pam.log
session  sufficient     /lib/security/pam_linux_afs.so authenticate
session  required       /lib/security/pam_unix_session.so


Regards

Herbert
--
Leibniz-Rechenzentrum der Bayerischen Akademie der
WissenschaftenAbteilung Rechensysteme, Gruppe Hochleistungssysteme
Herbert Huber (Tel. +49 89 289 28833, Fax +49 89 2809460)Barer Strasse
21
D-80333 Muenchen



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []