I've installed the auth_pam, and auth_pam compat from percona and I'm unable to authenticate with accounts identified with either.
I've got both a local account, and a kerberos account on the linux server and I can't get either of them to work.
I need kerberos authentication, but I was testing with a local account too just to see if I could get the pam authentication working period.
To get it working under the local account, I did add the mysql user to the shadow group and made sure the perms on the shadow file were good (g+r).
I have a feeling my problem is with the /etc/pam.d/mysqld file
auth required pam_warn.so auth required pam_unix.so audit account required pam_unix.so audit
I've also tried:
auth include common-auth account include common-account password include common-password session include common-session
And I've also tried:
auth required pam_warn.so auth required pam_krb5.so audit account required pam_krb5.so audit
My next step is to try enable pam debugging, as outlined here:
Any thoughts or suggestions would greatly be appreciated!