>User acquires kerberos ticket and login session is authorized. This log >is for a ssh access ...
I think you're missing some of the details that Greg is asking. When you say "ssh access", do you mean that you are using gssapi-with-mic or gssapi-keyex authentication with ssh, or does ssh ask for the user's Kerberos password? If the latter, ssh does not have that native ability, so it it going through the PAM stack to make that happen? If so, which PAM module are you using? --Ken ________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos