Hi,
On 09/25/2018 12:56 PM, Sergei Golubchik wrote:
pam_user_map renames the user in the pam module chain, that is, all
following pam modules will see the new name. And because 'account'
modules are invoked after 'auth', pam_winbind will see the new name.
Do you really have to use
account
Hi, mj!
On Sep 25, mj wrote:
> Hi,
>
> So, much progression, by using the pam debug flags:
>
> > auth required pam_winbind.so debug
> > account required pam_winbind.so debug
> > auth required pam_user_map.so debug
>
> reveiling this in /var/log/debug:
>
> > Sep
Hi,
So, much progression, by using the pam debug flags:
auth required pam_winbind.so debug
account required pam_winbind.so debug
auth required pam_user_map.so debug
reveiling this in /var/log/debug:
Sep 25 11:02:55 mariadb mysqld: pam_winbind(mysql:auth):
Hi all,
I'd like to ask an additional question re the subjectline.
I have setup pam auth with pam_winbind.so on a debian 9 stretch samba
domain member server, with mariadb 10.1 from the debian repo in
"pam_use_cleartext_plugin" mode.
I can logon (both ssh and mysql) with domain usernames
Hi Sergei!
Thank you very much, and this seems do exactly what we are looking for.
And yes: we will take care of encrypting the traffic ourselves.
On 9/11/2018 10:20 PM, Sergei Golubchik wrote:
Short answer - yes.
Long answer:
A very long and elaborate answer indeed! :-)
We will configure
Hi!
On Sep 11, mourik jan c heupink wrote:
> Until I found out this works only from the localhost mariadb is running
> on. Trying this from a remote mysql client gives:
>
> > user@e7470 ~ $ mysql -udomain_user -p -h mysqlserver.full.address
> > Enter password: ERROR 2059 (HY000):
Hi,
I installed mariadb using the stock debian packages, configured pam
authentication, and configured a mysql pam module like this:
> /etc/pam.d/mysql
> auth required pam_winbind.so
> account required pam_winbind.so
As I also added the server to my AD domain, this
7 matches
Mail list logo
