Steve, Would you agree to adding the "broken_shadow" option to pam_unix in the account mode?
The use case here is a laptop that normally authenticates with kerberos and gets it's NSS from LDAP, including the shadow map, even though it's not really used in this situation (due to the use of kerberos). This all works fine when the laptop is connected to the network. But take it away from the network where it depends on pam-ccreds to cache the kerberos authentication tokens (works just fine) and nscd to cache the passwd/group entries that were used while connected to the network, there is no shadow entry available for nscd cached passwd entries and thus, pam_unix's account mode breaks. -- account configuration not working https://bugs.launchpad.net/bugs/456985 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
