Hi folks, I'm trying to get our LTSP terminals to authenticate via the school's NT domain. I've got winbind working from the console login... but not from the terminals yet.
We're using xdm and I've noticed that xdm in /etc/pam.d is completely different from the files for gdm and kdm. Both kdm and gdm reference system-auth which I setup to call pam_winbind.so. The file for xdm does not reference system-auth at all. All three display managers basically do the same things... does anyone know why xdm has a different security configuration then kdm or gdm? Would it be ok from a security standpoint to duplicate the settings for kdm to xdm in /etc/pam.d? Here is /etc/pam.d/xdm: (Mandrake 8.2) #%PAM-1.0 auth required /lib/security/pam_pwdb.so shadow nullok auth required /lib/security/pam_nologin.so account required /lib/security/pam_pwdb.so password required /lib/security/pam_cracklib.so password required /lib/security/pam_pwdb.so shadow nullok use_authtok session required /lib/security/pam_pwdb.so session optional /lib/security/pam_console.so ... and here are /etc/pam.d/kdm and gdm: #%PAM-1.0 auth required /lib/security/pam_stack.so service=system-auth auth required /lib/security/pam_nologin.so account required /lib/security/pam_stack.so service=system-auth password required /lib/security/pam_stack.so service=system-auth session required /lib/security/pam_stack.so service=system-auth session optional /lib/security/pam_console.so Any comments or suggestions would be greatly appreciated! -Tom ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.openprojects.net
