lørdag 25. mars 2006, 16:46, skrev Guido Guenther: > On Sat, Mar 25, 2006 at 12:50:20PM +0100, klaus ade johnstad wrote: > > Package: libpam-ccreds > > Version: 1-6 > > Severity: important > > > > I'm trying to use pam_group.so to give users groupmemebership via > > /etc/security/group.conf and using "auth optional > > pam_group.so" in /etc/pam.d/common-auth. This works very well, > > until I start using libpam-ccreds. > > > > In case my pam-files are totaly to blame for this, I include them > > here: auth sufficient pam_unix.so > > auth [authinfo_unavail=ignore success=1 default=2] pam_ldap.so > > try_first_pass auth [default=done] pam_ccreds.so > > action=validate use_first_pass auth [default=done] > > pam_ccreds.so action=store use_first_pass auth [default=bad] > > pam_ccreds.so action=update use_first_pass auth optional > > pam_group.so > > With this setup pam_group.so is never done since the pam stack is > terminated after all of the three pam_ccreds.so calls. You should be > able to verify this with pam_warn.so. > Cheers, > -- Guido
Great, I did suspect there was something wrong with my setup, calling pam_group.so before pam_ccreds.so did help. Klaus -- 67E61D18B2C44F8A3DA35C6D849F9F5F 26FA477D
pgpTSGRMttajY.pgp
Description: PGP signature
