HPE Community
Operating System - HP-UX
1834685 Members
2573 Online
110069 Solutions
New Discussion

PAM and SMB

 
Kenrick Sy
Frequent Advisor

‎11-08-2005 02:30 PM

‎11-08-2005 02:30 PM

PAM and SMB

Hi,

I have a customer who has HP-UX 11i setup on their network and it authenticates users via their Active Directory. The HP-UX server has SSH service enabled.

They are using PAM and SMB. I'm trying to replicate their setup in my environment. I found out from their HP-UX machine that they have pam_smb.conf and pam_smb.usermap files. In my HP-UX machine, I dont have these files. What are the softwares that I have not yet setup? The problem is that I was able to login using Active Directory account to their HP-UX machine using telnet but I cannot login using Active Directory account to their machine using ssh.

Thanks.

Regards,

Kenrick
0 Kudos
Reply
8 REPLIES 8
RAC_1
Honored Contributor

‎11-08-2005 02:58 PM

‎11-08-2005 02:58 PM

Re: PAM and SMB

What is the error message that you get?? (ssh login error message)
Also have you set usePAM to yes in sshd_config file??
There is no substitute to HARDWORK
0 Kudos
Reply
Kenrick Sy
Frequent Advisor

‎11-08-2005 03:01 PM

‎11-08-2005 03:01 PM

Re: PAM and SMB

Hi RAC,

I get an error:

Failed password for "username" from "client_ip_address" port 3080 ssh2

Here is the pam.conf file of the server.

Thanks.

Kenrick

0 Kudos
Reply
Kenrick Sy
Frequent Advisor

‎11-08-2005 03:02 PM

‎11-08-2005 03:02 PM

Re: PAM and SMB

Hi RAC,

Attached also is the ssh_config file.

Thanks.

Kenrick
0 Kudos
Reply
RAC_1
Honored Contributor

‎11-08-2005 03:26 PM

‎11-08-2005 03:26 PM

Re: PAM and SMB

set usePAM to yes in sshd_config, restart sshd and check.
There is no substitute to HARDWORK
0 Kudos
Reply
Kenrick Sy
Frequent Advisor

‎11-08-2005 04:14 PM

‎11-08-2005 04:14 PM

Re: PAM and SMB

Thanks RAC. I'm just wondering where these files pam_smb.conf and pam_smb.usermap come from. Is it from the Samba package?

0 Kudos
Reply
RAC_1
Honored Contributor

‎11-08-2005 04:22 PM

‎11-08-2005 04:22 PM

Re: PAM and SMB

pam_smb.usermap file wuold be file mapping AD users to SMB users. Do not know how other file is put in.
There is no substitute to HARDWORK
0 Kudos
Reply
Kenrick Sy
Frequent Advisor

‎11-08-2005 04:26 PM

‎11-08-2005 04:26 PM

Re: PAM and SMB

Is there a PAM Samba depot software? The customer has these two files, however my Unix machine do not have these files.
0 Kudos
Reply
Thomas Bianco
Honored Contributor

‎11-10-2005 02:32 AM

‎11-10-2005 02:32 AM

Re: PAM and SMB

pam_smb.conf is the configuration file for the Samba Pam Module. it's probably not nessisary if your using AD (read "LDAP") authentication. the SMB pam module used NTLM authentication.

this is all from from memory, so don't poke me if i miss something.
There have been Innumerable people who have helped me. Of course, I've managed to piss most of them off.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.