telling the difference between login failed or server is down
Ken Partridge
KenP at wti.com
Thu Mar 15 17:22:18 UTC 2007
Hi All,
I have just a simplistic RADIUS pam file
# /etc/pam.d/login
#RADIUS_CONFIGURATION
auth sufficient pam_radius_auth.so
auth sufficient pam_unix_auth.so try_first_pass
account required pam_radius_auth.so
password required pam_radius_auth.so
The only way I want pam_unix_auth.so to execute is if the RADIUS server
is down, if the user entered a wrong password for the user on the RADIUS
server, I don't want pam_unix_auth.so to execute.
So basically I need to be able to tell if the login failed either from a
bad password or the RADIUS server was down. If the RADIUS server is
down, I need the user to log on locally. If the RADIUS server is running
and it was just a bad password, I want the process to fail and never try
locally.
Thanks
More information about the Pam-list
mailing list