How to set Authentication method priority??
vijay s sheelavantar
s_vijay65 at rediffmail.com
Tue Feb 15 02:22:33 CET 2011
Hi,
1. I have pam_radius_auth module configured to authenticate the login users. I have configured FreeRadius Server on a linux machine. I want to set the the priority for "local authentication" or "Radius authentication" for SSH. How can I do this?
2. I have created a user called "user" on client machine with passwd "123qwe" and I have created the same user on server with password "User_12", when authentication request reached the server it is sending "Access-Accept" message back to client, but user is not getting access to the machine(SSH).
I have following configuration in my /etc/pam.d/ssh file
auth sufficient pam_radius_auth.so debugauth required pam_nologin.soauth required pam_unix.soauth required pam_env.so # [1]auth required pam_tally.so deny=10 per_user
account required pam_unix.so session required pam_unix.sosession optional pam_motd.so # [1]session optional pam_mail.so standard noenv # [1]session required pam_limits.so #password required pam_unix.so # Alternate strength checking for password. Note that this# requires the libpam-cracklib package to be installed.# You will need to comment out the password line above and# uncomment the next two in order to use this.## password required pam_cracklib.so retry=3 minlen=6 difok=3# password required pam_unix.so use_authtok nullok md5 password required pam_cracklib.so retry=3 minlen=8 difok=3 lcredit=-1 ucredit=-1 dcredit=-1 ocredit=-1 password required pam_unix.so use_authtok nullok md5 shadow remember=5
Please let me know If I am making any mistake here. and help me to set the priority.
Thanx and RegardsVijay S.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20110215/6311c18b/attachment.html>
More information about the Freeradius-Users
mailing list