trouble configuring pam using pam_ldap and pam_mount

Heiko Harders harders at fmf.nl
Wed Aug 1 21:29:52 UTC 2007


A little update on my problems. I have decided to follow Jose's 
suggestion. So I've installed autofs and autofs-ldap. I'm mounting 
homedirs and shares which are specified in the LDAP server. For now I've 
given up on pam_mount. But if someone knows what the problem is, I'm 
still eager to hear about it!

Thanks for all your replies sofar,
Heiko


Heiko Harders wrote:
> Wilhelm Meier wrote:
>>
>> please show us the logs (add the debug option to every module
> First the exact configuration I used, I added 'debug' to every line:
>
> /etc/pam.d/common-account:
> account   required    pam_unix.so debug
> account   sufficient    pam_localuser.so debug
> account   required    pam_ldap.so debug
>
> /etc/pam.d/common-auth:
> auth   required    pam_mount.so debug
> auth   sufficient    pam_ldap.so use_first_pass debug
> auth   required    pam_unix.so nullok_secure use_first_pass debug
>
> /etc/pam.d/common-password:
> password   sufficient    pam_ldap.so debug
> password   required    pam_unix.so nullok obscure min=4 max=8 md5 debug
>
> /etc/pam.d/common-session:
> session   optional    pam_foreground.so debug
> session   [default=2 success=ignore] pam_succeed_if.so debug uid > 2000
> session   required    pam_mount.so debug
> session   sufficient    pam_ldap.so debug
> session   required    pam_unix.so debug
>
> /etc/pam.d/common-pammount: <empty>
>
> Next, the logs (I'm not sure this is everything, it is everything I 
> could find in '/var/log/' but if there is another location I should 
> look, please tell me):
>
> logged in as 'root' doing 'su heiko' (local user with uid 1000) and 
> after that directly 'exit':
> /var/log/auth.log:
>
> Jul 30 17:21:26 njord su[5758]: PAM unable to resolve symbol: 
> pam_sm_open_session
> Jul 30 17:21:26 njord su[5758]: PAM unable to resolve symbol: 
> pam_sm_close_session
> Jul 30 17:21:26 njord su[5758]: PAM unable to resolve symbol: 
> pam_sm_open_session
> Jul 30 17:21:26 njord su[5758]: PAM unable to resolve symbol: 
> pam_sm_close_session
> Jul 30 17:21:28 njord pam_localuser[5758]: checking 
> "root:x:0:0:root:/root:/bin/bash "
> <snip>pam_localuser checking all lines in /etc/passwd</snip>
> Jul 30 17:21:29 njord pam_localuser[5758]: checking 
> "heiko:x:1000:1000:Heiko Harders,,,:/home/heiko:/bin/bash "
> Jul 30 17:21:29 njord su[5758]: Successful su for heiko by root
> Jul 30 17:21:29 njord su[5758]: + pts/0 root:heiko
> Jul 30 17:21:29 njord su[5758]: (pam_unix) session opened for user 
> heiko by (uid=0)
> Jul 30 17:21:31 njord su[5758]: (pam_unix) session closed for user heiko
>
> logged in as 'root' doing 'su tdummy' (LDAP user width uid 2002) and 
> after that directly 'exit':
> /var/log/auth.log:
>
> Jul 30 17:30:30 njord su[6192]: PAM unable to resolve symbol: 
> pam_sm_open_session
> Jul 30 17:30:30 njord su[6192]: PAM unable to resolve symbol: 
> pam_sm_close_session
> Jul 30 17:30:30 njord su[6192]: PAM unable to resolve symbol: 
> pam_sm_open_session
> Jul 30 17:30:30 njord su[6192]: PAM unable to resolve symbol: 
> pam_sm_close_session
> Jul 30 17:30:32 njord pam_localuser[6192]: checking 
> "root:x:0:0:root:/root:/bin/bash "
> <snip>pam_localuser checking all lines in /etc/passwd</snip>
> Jul 30 17:30:32 njord pam_localuser[6192]: checking 
> "heiko:x:1000:1000:Heiko Harders,,,:/home/heiko:/bin/bash "
> Jul 30 17:30:32 njord pam_localuser[6192]: checking 
> "statd:x:110:65534::/var/lib/nfs:/bin/false "
> Jul 30 17:30:32 njord su[6192]: Successful su for tdummy by root
> Jul 30 17:30:32 njord su[6192]: + pts/0 root:tdummy
> Jul 30 17:30:32 njord su[6192]: (pam_unix) session opened for user 
> tdummy by (uid=0)
> Jul 30 17:32:20 njord su[6192]: (pam_unix) session closed for user tdummy
>
> logged in as 'heiko' (local user, uid 1000) with graphical login (gdm, 
> gnome):
> /var/log/auth.log:
>
> Jul 30 17:37:23 njord pam_localuser[4994]: checking 
> "root:x:0:0:root:/root:/bin/bash "
> <snip>pam_localuser checking all lines in /etc/passwd</snip>
> Jul 30 17:37:23 njord pam_localuser[4994]: checking 
> "heiko:x:1000:1000:Heiko Harders,,,:/home/heiko:/bin/bash "
> Jul 30 17:37:23 njord gdm[4994]: (pam_unix) session opened for user 
> heiko by (uid=0)
>
> logged in as 'tdummy' (LDAP user, uid 2002) with graphical login (gdm, 
> gnome):
> /var/log/auth.log:
>
> Jul 30 17:37:05 njord pam_localuser[4994]: checking 
> "root:x:0:0:root:/root:/bin/bash "
> <snip>pam_localuser checking all lines in /etc/passwd</snip>
> Jul 30 17:37:05 njord pam_localuser[4994]: checking 
> "heiko:x:1000:1000:Heiko Harders,,,:/home/heiko:/bin/bash "
> Jul 30 17:37:05 njord pam_localuser[4994]: checking 
> "statd:x:110:65534::/var/lib/nfs:/bin/false "
> Jul 30 17:37:05 njord gdm[4994]: (pam_unix) session opened for user 
> tdummy by (uid=0)
>
> _______________________________________________
> Pam-list mailing list
> Pam-list at redhat.com
> https://www.redhat.com/mailman/listinfo/pam-list




More information about the Pam-list mailing list