pam_check_host_attr + PAM configuration

View: New views

2 Messages — Rating Filter: Alert me

pam_check_host_attr + PAM configuration

by zf () :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Hi all,

I'm struggling for the past few days to setup host-based authentication on a CentOS 5 system using pam_check_host_attr directive but i really cannot understand how to make it work. I lack expertise in PAM so i'm trying many configurations found on the net about that subject but still none of these works either.

My /etc/ldap.conf is pretty simple and straightforward:
-------------------------
host 127.0.0.1
base dc=people,dc=domain
scope sub
ssl no
pam_check_host_attr yes
-------------------------

partial /etc/nsswitch.conf :

-------------------
passwd: files ldap
shadow: files ldap
group: files ldap
-------------------

partial /etc/ssh/sshd_config:

--------------
UsePAM yes
--------------

If anyone could guide me to setup PAM to support and respect this attribute, would be really appreciated.

TIA

Re: pam_check_host_attr + PAM configuration

by zf :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

zf wrote:

I'm struggling for the past few days to setup host-based authentication on a CentOS 5 system using pam_check_host_attr directive but i really cannot understand how to make it work. I lack expertise in PAM so i'm trying many configurations found on the net about that subject but still none of these works either.

Damn, sometimes you miss the most obvious thing! Anyway, host-based authentication works as expected, my bad, i was changing a different sshd_config file so ssh didn't cooperate with PAM at all.

Sorry for that!