*** Reply to note of Thu, 31 Aug 2006 23:05:44 +0200 *** by [email protected]
You need to modify pam_radius_auth package so it compiles with the big endian flag. You need to change md5.c and add the $define sun or compiler flag: #define sun #ifdef sun #define HIGHFIRST #endif The package does not use Autotools, so you have to do it yourself. We used the pam_radius_auth to authenticate with RSA SecurID servers. Salvador Adam Gill <[EMAIL PROTECTED]> writes: >I send my post again. > >Who help me with my problem? > >I tried configured pam_radius_auth on machines S390 and S390x. >My SLES 8 and SLES 9 could'nt authentication me and reject my connection by >ssh. I installed SLES 9 on my PC with this same configuration and >pam_radius_auth perfectly working. I can login by ssh and login with >autentication from radius. >I tried pam_radius_auth on S390 and S390x from rpm and from sources and with >both case didnt work. > > #uname -a >Linux lnxpb 2.4.21-309-default #1 SMP Tue May 23 12:17:56 UTC 2006 s390x >unknown > > My syslog: > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: Got user name testowy > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: Sending RADIUS request >code 1 > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: packet from RADIUS server >10.20.65.3 fails verification: The shared secret is probably incorrect. > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: All RADIUS servers failed >to respond. > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: authentication failed > Aug 4 18:36:26 lnxpb sshd[17852]: Failed password for testowy >from ::ffff:10.20.100.3 port 16571 ssh2 > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: Got user name testowy > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: Sending RADIUS request >code 1 > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: packet from RADIUS server >10.20.65.3 fails verification: The shared secret is probably incorrect. > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: All RADIUS servers failed >to respond. > Aug 4 18:36:26 lnxpb sshd[17852]: pam_radius_auth: authentication failed > Aug 4 18:36:26 lnxpb sshd[17852]: Failed password for testowy >from ::ffff:10.20.100.3 port 16571 ssh2 > > /etc/raddb/server > 10.20.65.3 secretnehaselko 5 > > This same shared secret in ACS (Radius server) > /etc/pam.d/sshd > #%PAM-1.0 auth sufficient pam_radius_auth.so debug > auth required pam_unix2.so > auth required pam_nologin.so > auth required pam_env.so > account required pam_unix2.so > account required pam_nologin.so > password sufficient pam_radius_auth.so > password required pam_pwcheck.so > password required pam_unix2.so > session required pam_unix2.so > session required pam_limits.so > Depends installed packages: > pam-0.76-33 > pam_radius-1.3.15-28 > pam-devel-0.76-33 > pam-modules-2002.8.27-18 > yast2-pam-2.6.5-39 > k_deflt-2.4.21-309 > openssh-askpass-3.4p1-270 > openssh-3.4p1-270 > I configured password autentication by radius on telnet and login and is the >same problem: > "fails verification: The shared secret is probably incorrect." > I try tools radtest and works fine. > My linuxs are on Z/VM. > What is wrong in my pam configuration? > What is different in pam on zSeries? > > Thanks in advance. > > Adam Gill > >---------------------------------------------------------------------- >For LINUX-390 subscribe / signoff / archive access instructions, >send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit >http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
