how to debug sssd
Nalin Dahyabhai
nalin at redhat.com
Wed Nov 25 19:22:02 UTC 2009
On Wed, Nov 25, 2009 at 06:03:48PM +0100, Eric Doutreleau wrote:
> i m trying to setup sssd on a fedora 12 machine
>
> i m carefully following the instructions of this page
>
> https://fedorahosted.org/sssd/wiki/HOWTO_Configure
>
> then i m trying to configure the LOCAL provider.
[snip]
> i look in the /var/log/secure file
> i have
> Nov 25 18:00:16 localhost unix_chkpwd[26069]: check pass; user unknown
> Nov 25 18:00:16 localhost unix_chkpwd[26069]: password check failed
> for user (glupglup)
> Nov 25 18:00:16 localhost sshd[26067]: pam_unix(sshd:auth):
> authentication failure; logname= uid=0 euid=0 tty=ssh ruser=
> rhost=157.159.21.158 user=glupglup
> Nov 25 18:00:16 localhost sshd[26067]: pam_sss(sshd:auth):
> authentication success; logname= uid=0 euid=0 tty=ssh ruser=
> rhost=157.159.21.158 user=glupglup
> Nov 25 18:00:16 localhost unix_chkpwd[26070]: could not obtain user
> info (glupglup)
> Nov 25 18:00:16 localhost sshd[26067]: pam_sss(sshd:account):
> authentication success; logname= uid=0 euid=0 tty=ssh ruser=
> rhost=157.159.21.158 user=glupglup
> Nov 25 18:00:16 localhost sshd[26067]: Failed password for glupglup
> from 157.159.21.158 port 35169 ssh2
> Nov 25 18:00:16 localhost sshd[26068]: fatal: Access denied for user
> glupglup by PAM account configuration
>
> Has someone already succed in configuring sssd?
A problem looking up user information points to not having 'sss' listed
as a source of information in /etc/nsswitch.conf. If you don't have
'sss' listed on the 'passwd:', 'group:', and 'shadow:' lines in that
file, it's probably worth adding it, restarting sshd so that it'll
re-read that configuration file, and trying again.
This is just my guess going from the error log. If that doesn't solve
it, you'll probably get better help on the sssd-devel mailing list on
fedorahosted.org (https://fedorahosted.org/mailman/listinfo/sssd-devel).
HTH,
Nalin
More information about the fedora-list
mailing list