Locking accounts after failed attempts. pam_tally ?
Is there a way to disable radius access for a user after a specified number of incorrect passwords using the standard Unix passwd system? I have pam_tally running and it correctly increments on failed SSH login attempts. However, failed Radius attempts do not increment the counter. Is there a way to make pam_tally work with Radius or do I need to find another way to do this? Thanks, Mark
Mark Tunnell wrote:
Is there a way to disable radius access for a user after a specified number of incorrect passwords using the standard Unix passwd system?
I don't know of any way.
I have pam_tally running and it correctly increments on failed SSH login attempts. However, failed Radius attempts do not increment the counter. Is there a way to make pam_tally work with Radius or do I need to find another way to do this?
It's PAM magic. I'd suggest asking on a PAM list. Alan DeKok.
participants (2)
-
Alan DeKok -
Mark Tunnell