On Sunday 19 Feb 2017 12:03:33 Mick wrote: > I am guessing there is something not being set in the /etc/pam.d/entrance > file which was installed with entrance. I am getting a wrong credentials > error, when both my username and passwd are entered correctly. > > This is the file installed by entrance: > > $ cat /etc/pam.d/entrance > #%PAM-1.0 > auth requisite pam_nologin.so > auth required pam_env.so readenv=1 > auth required pam_env.so readenv=1 envfile=/etc/default/locale > @include common-auth > auth optional pam_gnome_keyring.so > @include common-account > session required pam_limits.so > @include common-session > session optional pam_gnome_keyring.so auto_start > @include common-password > > > In contrast the sddm pam file looks like this: > > $ cat /etc/pam.d/sddm > #%PAM-1.0 > > auth include system-login > account include system-login > password include system-login > session include system-login > -auth optional pam_kwallet.so kdehome=.kde4 > -auth optional pam_kwallet5.so > -session optional pam_kwallet.so > -session optional pam_kwallet5.so auto_start > > > The sddm pam file works fine, but I do not want to start hacking the > entrance pam file without understainding what all these pam_foo.so > directives do. What do you suggest I need to change in it to make pam like > my user/passwd? > > PS. I do not use Gnome on this box.
I had a look at /var/log/messages and then commented out entries in /etc/pam.d/entrance about gnome and @include, because they were causing errors. Then added some of the syntax I borrowed from the sddm pam file, but I do not know if the final entrance pam file is correct/safe enough. In any case it allows me to login: #%PAM-1.0 #auth requisite pam_nologin.so #auth required pam_env.so readenv=1 auth include system-login auth required pam_env.so account include system-login #auth required pam_env.so readenv=1 envfile=/etc/default/locale #@include common-auth #auth optional pam_gnome_keyring.so #@include common-account session include system-login session required pam_unix.so session required pam_limits.so #@include common-session #session optional pam_gnome_keyring.so auto_start #@include common-password -auth optional pam_kwallet.so kdehome=.kde4 -auth optional pam_kwallet5.so -session optional pam_kwallet.so -session optional pam_kwallet5.so auto_start Please let me know if something in the above is incorrect/dangerous ... -- Regards, Mick
signature.asc
Description: This is a digitally signed message part.