Mas tenho outro problema agora. Estou configurando Debian para se autenticar no Ldap. Quando me logo pelo putty como um usuario que existe no passwd passa tranquilo e se dou um su para um usuario que exista somente no Ldap se autentica tambem, mas quando tento abrir direto o ssh com o nome do usuario que somente esta no Ldap exibe no auth.log os seguintes erros:
Mar 22 13:09:44 magogue sshd[3311]: Illegal user rocha from ::ffff:192.168.0.6
Mar 22 13:09:47 magogue sshd[3311]: (pam_unix) check pass; user unknown
Mar 22 13:09:47 magogue sshd[3311]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.0.6
Mar 22 13:09:47 magogue sshd[3311]: pam_ldap: error trying to bind as user "uid=rocha,ou=People,dc=travelace,dc=com,dc=br" (Invalid credentials)
Mar 22 13:09:48 magogue sshd[3311]: error: PAM: Authentication failure for illegal user rocha from 192.168.0.6
Mar 22 13:09:48 magogue sshd[3311]: Failed keyboard-interactive/pam for illegal user rocha from ::ffff:192.168.0.6 port 7455 ssh2
O meu aquivo pam.d/ssh esta assim:
# PAM configuration for the Secure Shell service
# Disallow non-root logins when /etc/nologin exists.
auth sufficient pam_ldap.so
auth required pam_nologin.so
# Read environment variables from /etc/environment and
# /etc/security/pam_env.conf.
auth required pam_env.so # [1]
# Standard Un*x authentication.
auth sufficient pam_ldap.so
@include common-auth
# Standard Un*x authorization.
auth sufficient pam_ldap.so
@include common-account
# Standard Un*x session setup and teardown.
auth sufficient pam_ldap.so
@include common-session
# Print the message of the day upon successful login.
session optional pam_motd.so # [1]
# Print the status of the user's mailbox upon successful login.
session optional pam_mail.so standard noenv # [1]
# Set up user limits from /etc/security/limits.conf.
session required pam_limits.so
# Standard Un*x password updating.
auth sufficient pam_ldap.so
@include common-password
Grato.
Fernando Ike de Oliveira <[EMAIL PROTECTED]> escreveu:
Em Qua, 2006-03-22 às 15:20 +0000, Claudio Rocha de Jesus escreveu:
> Ola lista!!!
>
> Alguém sabe em qual pacote do Debian encontro a biblioteca de pam
> pam_cracklib.so?
Quando tiver uma dúvida como essa pode usar o site do debian para
saber em qual pacote está o arquivo. http://packages.debian.org ou usar
o apt-file.
http://packages.debian.org/cgi-bin/search_contents.pl?word=pam_cracklib.so&searchmode=searchfilesanddirs&case=insensitive&version=stable&arch=i386
libpam-cracklib é o nome do pacote. =)
[]'s
--
Fernando Ike - http://fike.homelinux.org:8088/cgi-bin/blosxom
Linux User 303638 - Debian User 352
Jabber - [EMAIL PROTECTED]
I seek You (ICQ)- 160594996
--------------------------------------
- - Claudio Rocha de Jesus
|.|-|.| Analista de Suporte Tecnico
- [EMAIL PROTECTED]
--------------------------------------
Yahoo! doce lar. Faça do Yahoo! sua homepage.
