I didn't invest a huge amount of time figuring out why pam_unix.so was causing a problem because I wanted to use pam_ldap.so anyways.
There doesn't seem to be many examples out there that I could find that I got to work. FYI I am testing on RedHat 7.x and 8.0 machines.
Tim
EMOTO Masahiko wrote:
Does anyone show me a sample of PAM authenticate file? I want to use pam for client authentication, and I create pg_hba.cnf as,host all all 127.0.0.1 255.255.255.255 trust host all all 192.168.0.0 255.255.0.0 pam postgresqland /etc/pam.d/postgresql asauth required /lib/security/pam_stack.so service=system-auth account required /lib/security/pam_stack.so service=system-authI tried to connect to the server, but failed. The messages I received were follows;[CLIENT] % psql -h dgpc1 db1 -U emo Password: psql: FATAL: PAM authentication failed for user "emo" [SERVER] DEBUG: reaping dead processes DEBUG: child process (pid 15642) exited with exit code 0 DEBUG: BackendStartup: forked pid=15643 socket=8 DEBUG: received PAM packet LOG: CheckPAMAuth: pam_authenticate failed: 'Authentication failure' FATAL: PAM authentication failed for user "emo" DEBUG: proc_exit(0) DEBUG: shmem_exit(0) DEBUG: exit(0) DEBUG: reaping dead processesThe user account exists in the database, and I typed the system password. Environment: OS : Linux Kernel 2.4.19 PostgreSQL 7.3 By the way, what really I want to do is to configure the server behave like FTP servers; All the users except the guest (anonymous) requires the password authentication. The guest user can only read the data, and cannot alter the data. Are there any solutions to do this? --- EMOTO Masahiko --- ---------------------------(end of broadcast)--------------------------- TIP 1: subscribe and unsubscribe commands go to [EMAIL PROTECTED]
---------------------------(end of broadcast)--------------------------- TIP 3: if posting/reading through Usenet, please send an appropriate subscribe-nomail command to [EMAIL PROTECTED] so that your message can get through to the mailing list cleanly
