<div dir="ltr">I try to do sshd authentication to external radius through a pam. on my linux i have freeradius client<br><div class="gmail_quote"><div dir="ltr">my packages: pam 1.0, pam_radius-1.3.17, openssh-4.3p2, freeradius-client-snapshot-20080830<br>
<br>my /etc/pam.d/sshd look like this: <br>
<br>#%PAM-1.0<br>auth sufficient /lib/security/pam_radius_auth.so<br>auth include system-auth<br>#auth sufficient /lib/security/pam_radius_auth.so <br>account required pam_nologin.so<br>
account include system-auth<br>
password include system-auth<br>session optional pam_keyinit.so force revoke<br>session include system-auth<br>session required pam_loginuid.so<br><br>My shared secret is configured in /etc/raddb/server file. The radiusclient.conf configured too<br>
<br>sshd_config file:<br><br># $OpenBSD: sshd_config,v 1.73 2005/12/06 22:38:28 reyk Exp $<br># This is the sshd server system-wide configuration file. See<br># sshd_config(5) for more information.<br># To disable tunneled clear text passwords, change to no here!<br>
PasswordAuthentication no<br>ChallengeResponseAuthentication yes<br>UsePAM yes<br>Subsystem sftp /home/max/openssh-4.3p2/pc86//libexec/sftp-server<br><br>when i try to connect to sshd i have log message of wrong password, i check it too on side of radius server.<br>
<br>some ideas about? <br>Thanks<br>
<br><br><br><br><br><br></div>
</div><br></div>