[14741] in Kerberos
Solaris 8 /etc/pam.conf and Mit Kerberos
daemon@ATHENA.MIT.EDU (Matthew Glogowski)
Thu Jul 26 04:38:59 2001
From: "Matthew Glogowski" <matthewg@world.std.com>
Message-ID: <GH2n8M.n0r@world.std.com>
Date: Thu, 26 Jul 2001 08:21:42 GMT
To: kerberos@MIT.EDU
after installing the K5 software and setting everything up. i attempted to
try using Sun's PAM to provide Kerberos authentincation. everything seems
to work, however when i use su to su to root i get the following error:
PAM-KRB5: Kerberos V5 authentication failed Client not found in Kerberos
database
Segmentation fault
this is because PAM is attempting to find an K5 entry for
root/hostname.realm.com@REALM.COM
(i only have an entry in the database for root@REALM.COM.)
i'd like to avoid adding each machine to the K5 database, and instead would
only like to limit the KDC's to the database.
when i use "su -" i can login and just get an error message regarding not
having credentials. i'd like to try and use su instead of ksu if at all
possible.
is there some other tweaking of PAM on the Sun side which is possible?
thanks,
-matt
