Hi,

1.     I have pam_radius_auth module configured to authenticate the login users. I have configured FreeRadius Server on a linux machine. I want to set the the priority for "local authentication" or "Radius authentication" for SSH. How can I do this?

2. I have created a user called "user" on client machine with passwd "123qwe" and I have created the same user on server with password "User_12", when authentication request reached the server it is sending "Access-Accept" message back to client, but user is not getting access to the machine(SSH).

I have following configuration in my /etc/pam.d/ssh file

auth       sufficient    pam_radius_auth.so debug
auth       required     pam_nologin.so
auth       required     pam_unix.so
auth       required     pam_env.so # [1]
auth       required     pam_tally.so deny=10 per_user

account    required     pam_unix.so
 
session    required     pam_unix.so
session    optional     pam_motd.so # [1]
session    optional     pam_mail.so standard noenv # [1]
session    required     pam_limits.so
 
#password   required     pam_unix.so
 
# Alternate strength checking for password. Note that this
# requires the libpam-cracklib package to be installed.
# You will need to comment out the password line above and
# uncomment the next two in order to use this.
#
# password required       pam_cracklib.so retry=3 minlen=6 difok=3
# password required       pam_unix.so use_authtok nullok md5
 password required       pam_cracklib.so retry=3 minlen=8 difok=3 lcredit=-1 ucredit=-1 dcredit=-1 ocredit=-1
 password required       pam_unix.so use_authtok nullok md5 shadow remember=5

Please let me know If I am making any mistake here. and help me to set the priority.


Thanx and Regards
Vijay S.