On Sat, Mar 25, 2006 at 12:50:20PM +0100, klaus ade johnstad wrote: > Package: libpam-ccreds > Version: 1-6 > Severity: important > > I'm trying to use pam_group.so to give users groupmemebership via > /etc/security/group.conf and using "auth optional pam_group.so" > in /etc/pam.d/common-auth. This works very well, until I start using > libpam-ccreds. > > In case my pam-files are totaly to blame for this, I include them here: > auth sufficient pam_unix.so > auth [authinfo_unavail=ignore success=1 default=2] pam_ldap.so > try_first_pass > auth [default=done] pam_ccreds.so action=validate use_first_pass > auth [default=done] pam_ccreds.so action=store use_first_pass > auth [default=bad] pam_ccreds.so action=update use_first_pass > auth optional pam_group.so With this setup pam_group.so is never done since the pam stack is terminated after all of the three pam_ccreds.so calls. You should be able to verify this with pam_warn.so. Cheers, -- Guido
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
