[Samba] Winbind/PAM/SLES 8-problem

[danny.petterson at accenture.com]

Hi!

Yeah, I have, but thanx.

 
Greetings from
 
Danny Petterson
 
"Shadows and Dust"

-----Original Message-----
From: John H Terpstra [mailto:jht at samba.org] 
Sent: 24. februar 2009 14:42
To: samba at lists.samba.org
Subject: Re: [Samba] Winbind/PAM/SLES 8-problem

On Tuesday 24 February 2009 07:23:41 danny.petterson at accenture.com wrote:
> I'm working on getting some old SLES 8-serveres to use winbind, letting
> users authenticate to our Windows AD. All the setup of  samba, winbind,
> adding the server to the AD etc. is working fine, and all kinds of
> wbinfo returns what it is supposed to. BUT - when I try to login (using
> ssh), it utterly ignores winbind, and only tries to validate local
> users. Not one entry in messages or samba-logs about winbind when a
> users tries to logon to the system... I suppose its related to
> PAM-configuration, but Im not sure. This is what Im dealing with:
>
> UnitedLinux-1.0-i386-SP4 (from SPident)
> Linux 2.4.21-251-smp #1 SMP Thu Sep 23 17:22:54 UTC 2004 i686 unknown
> samba3-client-3.0.33-36
> samba3-winbind-3.0.33-36
> samba3-3.0.33-36
>
> This is where I try to use winbind in /etc/pam.d:
>
> common-account:
>
> account sufficient      /lib/security/pam_winbind.so
> account required        pam_unix2.so

> common-auth:
>
> auth    sufficient      /lib/security/pam_winbind.so
>
> auth    required        pam_unix2.so nullok_secure use_first_pass
>
> Can't get anything to work with winbind, not sudo, not su, not ssh -
> nothing. But again, all wbinfo, getent passwd, etc works fine.

Have you specified winbind in your nsswitch file?

/etc/nsswitch.conf:

passwd:  files winbind
shadow:  files winbind
group:  file winbind



- John T.



This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information.  If you have received it in error, please notify the sender immediately and delete the original.  Any other use of the email by you is prohibited.