« Return to Thread: pam_groupdn test fails, authentication allowed anyway?

Re: pam_groupdn test fails, authentication allowed anyway?

by Ben Beuchler-2 :: Rate this Message:

> So it appears to be properly detecting that the user should not be
> allowed access, yet authentication continues and access is granted.

I solved my own problem.

As it turns out, libnss_ldap was the culprit. Changing the entry in
nsswitch.conf for "shadow" from "files ldap" to just "files" resulted
in the behavior I expected.

-Ben

« Return to Thread: pam_groupdn test fails, authentication allowed anyway?