From owner-freebsd-stable@FreeBSD.ORG Wed Nov 10 17:13:40 2004 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BDB9716A4CE for ; Wed, 10 Nov 2004 17:13:40 +0000 (GMT) Received: from thekla.de.clara.net (thekla.de.clara.net [212.82.225.81]) by mx1.FreeBSD.org (Postfix) with ESMTP id DAC4F43D2F for ; Wed, 10 Nov 2004 17:13:39 +0000 (GMT) (envelope-from christian.meutes@de.clara.net) Received: from localhost.de.clara.net ([127.0.0.1] helo=localhost) by thekla.de.clara.net with esmtp (Exim 4.30; FreeBSD) id 1CRw2M-00017m-GF for freebsd-stable@freebsd.org; Wed, 10 Nov 2004 18:13:38 +0100 Received: from kamikaze-studio.int.de.clara.net ([192.168.0.232]) by thekla.de.clara.net with esmtp (Exim 4.30; FreeBSD) id 1CRw2M-00017g-BL for freebsd-stable@freebsd.org; Wed, 10 Nov 2004 18:13:38 +0100 Date: Wed, 10 Nov 2004 18:13:38 +0100 From: Christian Meutes To: freebsd-stable@freebsd.org Message-ID: <2627048885E8BF7F8DCDCFD2@jesk.int.de.clara.net> X-Mailer: Mulberry/3.1.6 (Linux/x86) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Pam Authorization Problem X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Christian Meutes List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Nov 2004 17:13:40 -0000 I recognized a strange behavior of PAM. My Plan was to do Authorization through pam_unix.so and pam_ldap.so I have the following configuration for this: --- account required pam_login_access.so account sufficient /usr/local/lib/pam_ldap.so account required pam_unix.so --- when the user neither exist in ldap nor in /etc/passwd then the auhtorization is nevertheless successful... this behavior isnt what i expected. i want to do authorization through pam_ldap.so and pam_unix.so