From owner-freebsd-questions@FreeBSD.ORG Thu Jul 14 18:32:23 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A3E2B16A41C for ; Thu, 14 Jul 2005 18:32:23 +0000 (GMT) (envelope-from djh@nebcorp.com) Received: from ratchet.nebcorp.com (ratchet.nebcorp.com [205.217.153.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8120643D45 for ; Thu, 14 Jul 2005 18:32:23 +0000 (GMT) (envelope-from djh@nebcorp.com) Received: by ratchet.nebcorp.com (Postfix, from userid 1014) id 3A178D9825; Thu, 14 Jul 2005 11:32:23 -0700 (PDT) Date: Thu, 14 Jul 2005 11:32:23 -0700 From: Danny Howard To: freebsd-questions@freebsd.org Message-ID: <20050714183223.GH81814@ratchet.nebcorp.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.4.2.1i X-Loop: djhoward@uiuc.edu Subject: Kerberos support in sudo? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 14 Jul 2005 18:32:23 -0000 Hello, First off, I'll admit up front that PAM makes no sense to me whatever. So, maybe the anser is in my PAM config. I have a 5.3 system running in a Kerberos 5 environment. I have configured ssh to authenticate against Kerberos just fine. And ksu works just right too. But sudo, I can not get working ... it just can't confirm a password for a user when it is run. I changed the /etc/pamd.d/system file to look like my /etc/pam.d/sshd file. That doesn't seem to help. I went into the port and slipped "--with-kerb5" into the CONFIGURE_ARGS, and reinstalled sudo, but still, I got no love. Anyone know how to get this working? Thanks, -danny