[rsbac] problem with RSBAC - UM
Bartosz Brodecki
Bartosz.Brodecki at cs.put.poznan.pl
Tue Mar 27 14:36:12 CEST 2007
Dnia wtorek, 27 marca 2007 14:15, Amon Ott napisał:
> On Tuesday 27 March 2007 13:41, Bartosz Brodecki wrote:
> > I want to use rsbac UM module, but when I install this with
> > instruction I may login, change password, but system doesn't see
> > username and group name, for example:
> > when I wrote: "whoami" I get: "whoami: connot find name for user ID
> > 1000"
> >
> > my config files:
> > ---- nsswitch.conf -------
> > passwd: rsbac
> > group: rsbac
> > shadow: rsbac
> >
> > hosts: files
> > etc.
> > ------------------------------
> > ---- /etc/pam.d/common-auth ------------------
> > auth required pam_env.so
> > auth required pam_rsbac.so
> > ---------------------------------------------
> > and so on - when I have pam_unix2.so I wrote pam_rsbac.so
>
> This looks ok. You should enable UM debugging with
> echo "debug aef_um 1" >/proc/rsbac-info/debug
this help
> to get more info. Also, the output of "rsbac_usershow 1000" might
> help.
>
> Are you sure that nsswitch.conf is used by your programs? It looks as
> if pam was working, but nss not. Where is your libnss_rsbac.so? If it
> is in /usr/local/lib, you might be missing that dir in
> your /etc/ld.so.conf.
yes, this libraries was in /usr/local/lib and is strage but when I copy them
to /lib it works
thanks,
Bartek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://www.rsbac.org/pipermail/rsbac/attachments/20070327/60acd5d8/attachment.pgp
More information about the rsbac
mailing list