gssapi not enabled

Ted Creedon tcreedon at easystreet.net
Sat Apr 4 12:42:02 EST 2009 

Progress!  Now getting auth failures! krbf-conf is now found!

I'm using russ alberry's pam modules pam_krb5 and pam_afs_session

Not quite sure what to do next... Looks like the problem is in the PAM
stack..

<<<<<<<<<</etc/pam.d/sshd is :>>>>>>>>>>>>
auth       required     /lib64/security/pam_unix.so shadow nodelay
auth       required     /lib64/security/pam_nologin.so
account    required     /lib64/security/pam_unix.so
password   required     /lib64/security/pam_cracklib.so
password   required     /lib64/security/pam_unix.so shadow nullok
use_authtok
session    required     /lib64/security/pam_unix.so
session    required     /lib64/security/pam_limits.so
session       optional     /usr/local/lib/security/pam_krb5.so
session    optional     /usr/local/lib64/security/pam_afs_session.so

<<<<<<<<<<<<<<<<vaal/log/messages>>>>>>>>>>>>>>
Apr  3 18:25:44 geronimo sshd[13595]: debug3: monitor_read: checking request
3
Apr  3 18:25:44 geronimo sshd[13595]: debug3: mm_answer_authserv:
service=ssh-connection, style=
Apr  3 18:25:44 geronimo sshd[13595]: debug2: monitor_read: 3 used once,
disabling now
Apr  3 18:25:44 geronimo sshd[13595]: debug3: mm_request_receive entering
Apr  3 18:25:44 geronimo sshd[13595]: debug3: monitor_read: checking request
10
Apr  3 18:25:44 geronimo sshd[13595]: debug1: temporarily_use_uid: 0/0
(e=0/0)
Apr  3Apr  3 18:25:44 geronimo sshd[13595]: debug3: monitor_read: checking
request 3
Apr  3 18:25:44 geronimo sshd[13595]: debug3: mm_answer_authserv:
service=ssh-connection, style=
Apr  3 18:25:44 geronimo sshd[13595]: debug2: monitor_read: 3 used once,
disabling now
Apr  3 18:25:44 geronimo sshd[13595]: debug3: mm_request_receive entering
Apr  3 18:25:44 geronimo sshd[13595]: debug3: monitor_read: checking request
10
Apr  3 18:25:44 geronimo sshd[13595]: debug1: temporarily_use_uid: 0/0
(e=0/0)
Apr  3 18:25:44 geronimo krb5kdc[9241]: AS_REQ (12 etypes {18 17 16 23 1 3 2
11 10 15 12 13}) 71.236.188.74: ISSUE: authtime 1238808344, etypes {rep=16
tkt=1 ses=16}, me_user at SERVER.COM for krbtgt/SERVER.COM at SERVER.COM
Apr  3 18:25:44 geronimo syslog-ng[2290]: last message repeated 2 times
Apr  3 18:25:44 geronimo sshd[13595]: debug1: restore_uid: 0/0
Apr  3 18:25:44 geronimo sshd[13595]: debug1: Kerberos password
authentication failed: Input/output error
Apr  3 18:25:44 geronimo sshd[13595]: debug1: krb5_cleanup_proc called
Apr  3 18:25:45 geronimo sshd[13595]: debug3: PAM: sshpam_passwd_conv called
with 1 messages
Apr  3 18:25:45 geronimo sshd[13595]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=xx.xx.xx.xx4
user=me_user
Apr  3 18:25:45 geronimo sshd[13595]: debug1: PAM: password authentication
failed for me_user: Authentication failure
Apr  3 18:25:45 geronimo sshd[13595]: debug3: mm_answer_authpassword:
sending result 0
Apr  3 18:25:45 geronimo sshd[13595]: debug3: mm_request_send entering: type
11
Apr  3 18:25:45 geronimo sshd[13595]: Failed none for me_user from
71.236.188.74 port 60039 ssh2
Apr  3 18:25:45 geronimo sshd[13595]: debug3: mm_request_receive entering
Apr  3 18:25:45 geronimo sshd[13595]: debug1: do_cleanup
Apr  3 18:25:45 geronimo sshd[13595]: debug1: PAM: cleanup
Apr  3 18:25:45 geronimo sshd[13595]: debug3: PAM: sshpam_thread_cleanup
entering 18:25:44 geronimo krb5kdc[9241]: AS_REQ (12 etypes {18 17 16 23 1 3
2 11 10 15 12 13}) 71.236.188.74: ISSUE: authtime 1238808344, etypes {rep=16
tkt=1 ses=16}, me_user at SERVER.COM for krbtgt/SERVER.COM at SERVER.COM
Apr  3 18:25:44 geronimo syslog-ng[2290]: last message repeated 2 times
Apr  3 18:25:44 geronimo sshd[13595]: debug1: restore_uid: 0/0
Apr  3 18:25:44 geronimo sshd[13595]: debug1: Kerberos password
authentication failed: Input/output error
Apr  3 18:25:44 geronimo sshd[13595]: debug1: krb5_cleanup_proc called
Apr  3 18:25:45 geronimo sshd[13595]: debug3: PAM: sshpam_passwd_conv called
with 1 messages
Apr  3 18:25:45 geronimo sshd[13595]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=xx.xx.xx.xx4
user=me_user
Apr  3 18:25:45 geronimo sshd[13595]: debug1: PAM: password authentication
failed for me_user: Authentication failure
Apr  3 18:25:45 geronimo sshd[13595]: debug3: mm_answer_authpassword:
sending result 0
Apr  3 18:25:45 geronimo sshd[13595]: debug3: mm_request_send entering: type
11
Apr  3 18:25:45 geronimo sshd[13595]: Failed none for me_user from
71.236.188.74 port 60039 ssh2
Apr  3 18:25:45 geronimo sshd[13595]: debug3: mm_request_receive entering
Apr  3 18:25:45 geronimo sshd[13595]: debug1: do_cleanup
Apr  3 18:25:45 geronimo sshd[13595]: debug1: PAM: cleanup
Apr  3 18:25:45 geronimo sshd[13595]: debug3: PAM: sshpam_thread_cleanup
entering

More information about the openssh-unix-dev mailing list