Home > mailing lists

Re: PAM auth - Mailing list pgsql-hackers

From	Albe Laurenz
Subject	Re: PAM auth
Date	June 20, 2006 08:02:07
Msg-id	52EF20B2E3209443BC37736D00C3C13809059F52@EXADV1.host.magwien.gv.at Whole thread Raw
In response to	PAM auth (satoshi nagayasu <nagayasus@nttdata.co.jp>)
Responses	Re: PAM auth (Satoshi Nagayasu <nagayasus@nttdata.co.jp>)
List	pgsql-hackers

Tree view

satoshi nagayasu wrote:
> I'm trying to use PAM auth on PostgreSQL, but I still cannot
> get success on PAM auth (with PG813 and RHEL3).
>
> pg_hba.conf has
> > host    pamtest     all         0.0.0.0/0             pam
>
> /etc/pam.d/postgresql is
> > #%PAM-1.0
> > auth       required     pam_stack.so service=system-auth
> > account    required     pam_stack.so service=system-auth
> > password   required     pam_stack.so service=system-auth
>
> And I've changed user password with "ALTER USER ... PASSWORD".
>
> However, my postmaster always denies my login.

/etc/pam.d/system-auth probably uses pam_unix.so to authenticate.

Does the user exist on the machine and have the password you try?

You could add 'debug' to the pam_unix.so lines in /etc/pam.d/system-auth
and capture what PAM logs to syslog, maybe that will help.

Yours,
Laurenz Albe

pgsql-hackers by date:

From: Tom Lane
Date: 20 June 2006, 04:18:48
Subject: Re: shall we have a TRACE_MEMORY mode

From: "Gurjeet Singh"
Date: 20 June 2006, 08:02:52
Subject: Re: shall we have a TRACE_MEMORY mode

Re: PAM auth - Mailing list pgsql-hackers

Previous

Next