Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
  • Students Click Here

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

PAM Authentication

PAM Authentication

PAM Authentication

I'm running RHEL 7 with Percona Server 5.6.27-76.0
I've installed the auth_pam, and auth_pam compat from percona and I'm unable to authenticate with accounts identified with either.

I've got both a local account, and a kerberos account on the linux server and I can't get either of them to work.
I need kerberos authentication, but I was testing with a local account too just to see if I could get the pam authentication working period.

To get it working under the local account, I did add the mysql user to the shadow group and made sure the perms on the shadow file were good (g+r).

I have a feeling my problem is with the /etc/pam.d/mysqld file


auth       required     pam_warn.so
auth       required     pam_unix.so audit
account    required     pam_unix.so audit 

I've also tried:


auth            include         common-auth
account         include         common-account
password        include         common-password
session         include         common-session 

And I've also tried:


auth required pam_warn.so
auth required pam_krb5.so audit
account required pam_krb5.so audit 

My next step is to try enable pam debugging, as outlined here:

Any thoughts or suggestions would greatly be appreciated!

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close