Bug 548 - SSH Authentication fails against PAM + pam_ldap
Summary: SSH Authentication fails against PAM + pam_ldap
Status: CLOSED FIXED
Alias: None
Product: Portable OpenSSH
Classification: Unclassified
Component: sshd (show other bugs)
Version: -current
Hardware: ix86 Linux
: P2 normal
Assignee: OpenSSH Bugzilla mailing list
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2003-04-25 02:35 AEST by Mark Bainter
Modified: 2004-04-14 12:24 AEST (History)
0 users

See Also:

Attachments
Output of sshd -d -d -d (7.04 KB, text/plain)
2003-04-25 02:37 AEST, Mark Bainter 		no flags Details
output of ssh -v -v server (5.61 KB, text/plain)
2003-04-25 02:37 AEST, Mark Bainter 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Mark Bainter 2003-04-25 02:35:39 AEST 
All tested services (ftp/telnet/etc) Authenticate fine against PAM/LDAP except
for SSH.  Services are configured in pam to fall through to system-auth, so all
services are using the same PAM configuration for authentication.

Attempting to login using public keys gives a password expiry error, all other
authentication simply fails as if a bad password was given.  Tried removing
shadowAccount class from the user definition as well as disabling Priviledge
seperation, neither fixed the problem.

Output of sshd -d -d -d and ssh -v (client side) will be attached.
Comment 1 Mark Bainter 2003-04-25 02:37:08 AEST 
Created attachment 275 [details]
Output of sshd -d -d -d
Comment 2 Mark Bainter 2003-04-25 02:37:47 AEST 
Created attachment 276 [details]
output of ssh -v -v server
Comment 3 Mark Bainter 2003-04-27 06:04:42 AEST 
Fixed.  The filename in /etc/pam.d was incorrect for the way it was compiled.  I
had tried changing it at one point, but I'm guessing something must've been
wrong with my configuration so that it still failed.
Comment 4 Damien Miller 2004-04-14 12:24:19 AEST 
Mass change of RESOLVED bugs to CLOSED