SUMMARY: NIS User account? or crypt issue?
Dege, Robert C.
robert.dege at ngc.com
Tue Aug 24 17:26:37 UTC 2004
To answer James's question, the NIS master is on a linux system.
I have solved my problem. Thank you to all those that replied.
My problem was not NIS related at all. It had to do with local authentication. While performing some tests,
I discovered that only 8< character passwords were successfully authenticating. Any passwords >8 characters
were always failing. I also found that if I only typed the first 8 characters of a 12 character password, then
that user would then successfully login. This became a DES/MD5 issue.
I search the RedHat errata's & found updated version of the pam program. I also saw that the version of pam
between the two systems were different. Upgrading system-2 to a newer version of pam (rpm found in the 7.2
updates folder on the redhat ftp site) fixed my problem. Now, any user that logs in with a >8 passwords will
correctly authenticate.
-Rob
> -----Original Message-----
> From: redhat-list-bounces at redhat.com
> [mailto:redhat-list-bounces at redhat.com]
> Sent: Tuesday, August 24, 2004 12:29 PM
> To: General Red Hat Linux discussion list
> Subject: RE: NIS User account? or crypt issue?
>
>
>
> A wild guess....
>
> Im pushing the boat out a bit here, so dont flame me....
>
> Is the nis master a redhat system?
>
> Ive seen a problem where the nis master is Solaris and when
> the password is
> changed on the Redhat system (workstation) the password is
> screwed up. Maybe
> its got something to do with MD5 (on the redhat system) vs a
> passwd encrypted
> password on the Solaris system.
>
> A passwd password is 8 characters long and an MD5 password is longer.
>
> Change the password on the nis master or slave.
>
> James
>
> --- "Dege, Robert C." <robert.dege at ngc.com> wrote:
>
> >
> > I have made some progress on my problem, however I don't
> feel any closer to
> > a solution than before!
> > I have been able to eliminate NIS as a possible problem.
> This seems to be
> > more of a authentication issue with login itself. Here's
> what I did:
> >
> > *) first, I took the NIS entry (ypmatch user passwd) &&
> placed it into
> > /etc/passwd.
> > *) shut off NIS. finger the username to verify that the
> local passwd entry
> > is valid.
> > *) I tried to login but was still getting password failures.
> >
> > *) I then ran a crypt perl script & changed the encrypted
> passwd (passwd is
> > timecard)
> > *) I tried to login & was successful! I could login.
> >
> > *) I ran the crypt perl script again & changed the
> encrypted passwd (passwd
> > is motivation)
> > *) I tried to login & failed with a password incorrect again.
> >
> >
> > # ./crypt.pl timecard
> > qiI5rFufWzRBQ
> >
> > # ./crypt.pl motivation
> > ddo7t1js5n.pE
> >
> >
> > -Rob
> >
> > > -----Original Message-----
> > > From: redhat-list-bounces at redhat.com
> > > [mailto:redhat-list-bounces at redhat.com]
> > > Sent: Tuesday, August 24, 2004 9:38 AM
> > > To: General Red Hat Linux discussion list
> > > Subject: RE: NIS User account
> > >
> > >
> > > can you "su - problematic_account" from root?
> > >
> > > > -----Original Message-----
> > > > From: Dege, Robert C. [mailto:robert.dege at ngc.com]
> > > > Sent: Mon, August 23, 2004 9:36 PM
> > > > To: RedHat List (E-mail)
> > > > Subject: NIS User account
> > > >
> > > >
> > > >
> > > > I am need of assistance. I have an NIS user account that can
> > > > logon to one
> > > > machine, but is unable to logon to another. Both NIS clients
> > > > share the
> > > > same NIS master, and are in the same domain.
> > > >
> > > > I ran a ypmatch against the user, and NIS entry is identical
> > > > from both
> > > > machines. A finger on the NIS account from both systems
> > > > shows identical
> > > > information, along with a valid shell.
> > > >
> > > > Upon failed authentication, /var/log/messages shows a
> > > > PASSWORD INCORRECT
> > > > message on system-2. I also tried over ssh & telnet, but
> > > to no avail.
> > > >
> > > > Both systems are redhat 7.2.
> > > >
> > > > -Rob
> > > >
> > > >
> > > >
> > > >
> > > **************************************************************
> > > *********************
> > > Information contained in this email message is intended only
> > > for use of the individual or entity named above. If the
> > > reader of this message is not the intended recipient, or the
> > > employee or agent responsible to deliver it to the intended
> > > recipient, you are hereby notified that any dissemination,
> > > distribution or copying of this communication is strictly
> > > prohibited. If you have received this communication in error,
> > > please immediately notify the postmaster at nds.com and destroy
> > > the original message.
> > > **************************************************************
> > > *********************
> > >
> > >
> > > --
> > > redhat-list mailing list
> > > unsubscribe
mailto:redhat-list-request at redhat.com?subject=unsubscribe
> > https://www.redhat.com/mailman/listinfo/redhat-list
> >
>
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>
__________________________________
Do you Yahoo!?
Yahoo! Mail - Helps protect you from nasty viruses.
http://promotions.yahoo.com/new_mail
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
More information about the redhat-list
mailing list