openldap and openssh
Hi all,
I have an openldap server and a solaris 10 client.
I can connect on this solaris 10 client with two accounts
(bruno and toto) : a /etc/passwd account (toto) and an openldap
account (bruno).
I store the SAME publickeys in the .ssh repositories
of the two accounts :
[buster.root:13] ls -al /home/bruno/.ssh/
-rw-r--r--1 brunotechniq209 nov 16 17:23 authorized_keys
-rw-1 brunotechniq883 nov 16 17:23 id_rsa
-rw-r--r--1 brunotechniq231 nov 16 17:23 known_hosts
[buster.root:14] ls -al /home/toto/.ssh/
-rw-r--r--1 totoother209 nov 16 17:38 authorized_keys
-rw-1 totoother883 nov 16 17:38 id_rsa
-rw-r--r--1 totoother231 nov 16 17:38 known_hosts
However when I try to connect from an account which has the
same keys, I only succeed with the /etc/passwd account (toto) while
the client systematically rejects my connection for the openldap
account (bruno).
sshd -ddd shows :
debug1: do_pam_account: called
debug3: mm_request_receive entering
debug3: PAM: do_pam_account pam_acct_mgmt = 9 (Authentication failed)
debug3: mm_request_send entering: type 47
Failed publickey for bruno from xxx.xxx.xxx.xxx port 33153 ssh2
debug3: mm_request_receive entering
debug3: mm_do_pam_account returning 0
Access denied for user bruno by PAM account configuration
Any idea of what is wrong ?
perhaps my pam.conf should be adapted to allow connection
with publickeys and openldap ?
thanks in advance for any tip.
Bruno
