[K12OSN] pam_mkhomedir for samba member server

mrok12osn at eastgranby.k12.ct.us mrok12osn at eastgranby.k12.ct.us
Tue Apr 8 18:53:18 UTC 2008 

I have been trying to get pam_mkhomedir working to automatically create
home directories on a domain member server (DMS).  I have not been
successful getting the home directory automatically created.  Note that if
I manually allocate the home directory for a user, the user is successful
in logging in and using the home directory so I think my samba DMS setup
is correct.

The DMS setup is Fedora 8 64 bit and samba 3.0.28 connecting to a similar
samba PDC using tdbsam.  selinux is disabled on both servers.

I have no understanding of pam, but have been following howto's on the net.

Below is a part of smb.conf, /etc/pam.d/system-auth and the log output

Any help/suggestions are appreciated.

smb.conf

     security = domain

     idmap domains = EGHSLIB
     idmap config EGHSLIB:backend = rid
     idmap config EGHSLIB:range = 10000 - 49999
     idmap config EGHSLIB:baserid = 1000

     template homedir = /home/%U


/etc/pam.d/system-auth

#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth        required      pam_env.so
auth        sufficient    pam_unix.so nullok try_first_pass
auth        requisite     pam_succeed_if.so uid >= 500 quiet
auth        required      pam_deny.so

account     required      pam_unix.so
account     sufficient    pam_localuser.so
account     sufficient    pam_succeed_if.so uid < 500 quiet
account     required      pam_permit.so

password    requisite     pam_cracklib.so try_first_pass retry=3
password    sufficient    pam_unix.so md5 shadow nullok try_first_pass
use_authtok
password    required      pam_deny.so

session     required      /lib64/security/pam_mkhomedir.so skel=/etc/skel
umask=0077
# session     required      pam_mkhomedir.so skel=/etc/skel umask=0077
session     optional      pam_keyinit.so revoke
session     required      pam_limits.so
session     [success=1 default=ignore] pam_succeed_if.so service in crond
quiet use_uid
session     required      pam_unix.so


/var/lib/messages

Apr  8 07:59:06 mssrv01 winbindd[2785]: [2008/04/08 07:59:06.957241, 0]
nsswitch/winbindd_cache.c:initialize_winbindd_cache(2222)
Apr  8 07:59:06 mssrv01 winbindd[2785]:   initialize_winbindd_cache:
clearing cache and re-creating with version number 1
Apr  8 08:03:09 mssrv01 smbd[2825]: [2008/04/08 08:03:09.745144, 0]
smbd/service.c:make_connection_snum(1003)
Apr  8 08:03:09 mssrv01 smbd[2825]:   '/home/maoms08' does not exist or
permission denied when connecting to [maoms08] Error was No such file or
directory
Apr  8 08:03:46 mssrv01 smbd[2830]: [2008/04/08 08:03:46.314890, 0]
smbd/service.c:make_connection_snum(1003)
Apr  8 08:03:46 mssrv01 smbd[2830]:   '/home/maoms08' does not exist or
permission denied when connecting to [maoms08] Error was No such file or
directory
Apr  8 08:03:50 mssrv01 smbd[2830]: [2008/04/08 08:03:50.711436, 0]
smbd/service.c:make_connection_snum(1003)
Apr  8 08:03:50 mssrv01 smbd[2830]:   '/home/maoms08' does not exist or
permission denied when connecting to [maoms08] Error was No such file or
directory


Mark Orenstein
East Granby, CT School System

More information about the K12OSN mailing list