[jadmin] PAM Authentication
Bob Larsen
bob at bryanramey.com
Wed Jan 23 15:26:45 CST 2008
I don't have any /var/log/auth.log
Ive looked through most of the logs I have, and don't see anything that looks like it came from pam
I have, however, gotten PAM to authenticate AD users for console logins.
This works for:
Username
Password
But does not work for:
Username at domain.tld
or
Username at DOMAIN.TLD
I've copied /etc/pam.d/login to /etc/pam.d/jabberd, but I still cannot login with a client.
I know the client has to pass "user at realm" to c2s, but what username does c2s pass to pam?
The c2s logs show "auth failed: username=user"
To me this says that it is trying to login as:
Username
Password
But this is all getting very confusing
Bob Larsen
Bryan D Ramey and Associates
bob at bryanramey.com
-----Original Message-----
From: jadmin-bounces at jabber.org [mailto:jadmin-bounces at jabber.org] On Behalf Of Tomasz Sterna
Sent: Wednesday, January 23, 2008 10:56 AM
To: Jabber/XMPP server administration list
Subject: Re: [jadmin] PAM Authentication
On Śr, 2008-01-23 at 10:38 -0500, Bob Larsen wrote:
> when I try to login I get the following logs:
>
> Jabberd/c2s[pid]: pam: couldn’t authenticate: Authentication token
> manipulation error
> Jabberd/c2s[pid]: auth failed: username=user, resource=resource
>
> This is really vague, and I don’t know enough about pam or winbind to
> extract more meaningful information.
You should have more descriptive messages in your PAM logs in /var/log
(I guess /var/log/auth.log or something similar.)
--
/\_./o__ Tomasz Sterna
(/^/(_^^' http://www.xiaoka.com/
._.(_.)_ im:smoku at xiaoka.com
_______________________________________________
JAdmin mailing list
JAdmin at jabber.org
http://mail.jabber.org/mailman/listinfo/jadmin
FAQ: http://www.jabber.org/about/jadminfaq.shtml
_______________________________________________
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the JAdmin
mailing list