[Samba] Vijay - kerberos + vsftpd

Vijay Ramnarayan vijay.ramnarayan at intransa.com
Wed Feb 8 11:50:36 GMT 2006


Hi,

I have configured vsftpd on a RHEL 4 server box. 
Have configured Kerberos to work with the Windows 2003 Active Directory server and using the kinit & klist command verify that the Kerberos authentication is working. 

What I would like to do is : 
Only for vsftpd the authentication should be against the Active Directory, 

Below is the output of the /etc/pam.d/vsftpd

--------------
[root at ftp ~]# cat /etc/pam.d/vsftpd
#%PAM-1.0
auth       required     pam_krb5.so try_first_pass
auth       required     pam_shells.so
account    required     pam_krb5.so try_first_pass
session    required     pam_krb5.so try_first_pass
session    required     pam_loginuid.so
[root at ftp ~]#
--------------
Output of klist command 
--------------
[root at ftp ~]# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: test2 at GOTEST.COM

Valid starting     Expires            Service principal
02/08/06 12:56:55  02/08/06 22:56:56  krbtgt/GOTEST.COM at GOTEST.COM
        renew until 02/09/06 12:56:55

Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
[root at ftp ~]#

--------------
Please let me know what will be the new entries in the /etc/pam.d/vsftpd file and whether any other file is to be edited ? 

Kindly help. 

Regards,
Vijay





More information about the samba mailing list