Quoting Rowan Woodhouse <[EMAIL PROTECTED]>: > Kerberos auth works fine for local users (ie I can ssh in with a > kerberos ticket) but if I try the same with a ldap user then it > fails. If I su to the ldap defined user I get "su: Authentication > service cannot retrieve authentication info".
Did you update the /etc/pam.d/su file? Should look like the /etc/pam.d/ssh file... > The strange thing is > that if I finger the ldap user I get the normal information back and > they are also listed when I do a getent passwd. That's taken care of by the LibNSS/LDAP module so that's 'completely' different... > Does anyone have any ideas about what could be causing this? Check you logs and maybe run su 'within' strace... ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
