API tools faq
paste
Guest User

Untitled

a guest
Apr 30th, 2018
122
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.90 KB | None | 0 0
raw download clone embed print report
  1. sudo apt-get install krb5-user libpam-krb5 libpam-ccreds auth-client-config
  2. sudo dpkg-reconfigure krb5-config
  3. sudo auth-client-config -a -p kerberos_example
  4.  
  5. pam_auth=auth [authinfo_unavail=ignore success=1 default=2] pam_krb5.so use_first_pass ignore_root debug
  6. auth [success=done default=ignore] pam_unix.so nullok_secure debug
  7. auth [default=done] pam_ccreds.so action=validate use_first_pass
  8. auth [default=done] pam_ccreds.so action=store
  9. auth [default=bad] pam_ccreds.so action=update
  10. pam_account=account sufficient pam_krb5.so debug
  11. account sufficient pam_unix.so debug
  12. account required pam_permit.so
  13. pam_password=password sufficient pam_unix.so nullok obscure min=4 max=8 md5 debug
  14. password sufficient pam_krb5.so debug try_first_pass
  15. password required pam_deny.so
  16. pam_session=session required pam_mkhomedir.so umask=0022 skel=/etc/skel
  17. session optional pam_foreground.so
  18. session optional pam_krb5.so debug
  19. session required pam_unix.so debug
  20.  
  21. pam_auth=auth [success=2 default=ignore] pam_krb5.so use_first_pass ignore_root debug
  22. auth [success=1 default=ignore] pam_unix.so nullok_secure try_first_pass debug
  23. auth requisite pam_deny.so
  24. auth required pam_permit.so
  25. auth [default=done] pam_ccreds.so action=validate use_first_pass
  26. auth [default=done] pam_ccreds.so action=store
  27. auth [default=bad] pam_ccreds.so action=update
  28. pam_account=account [success=1 new_authtok_reqd=done default=ignore] pam_unix.so debug
  29. account requisite pam_deny.so
  30. account required pam_permit.so
  31. account required pam_krb5.so debug
  32. pam_password=password [success=2 default=ignore] pam_krb5.so minimum_uid=1000
  33. password [success=1 default=ignore] pam_unix.so obscure use_authtok try_first_pass sha512
  34. password requisite pam_deny.so
  35. password required pam_permit.so
  36. pam_session=session required pam_mkhomedir.so umask=0022 skel=/etc/skel
  37. session optional pam_foreground.so
  38. session optional pam_krb5.so debug
  39. session required pam_unix.so debug
  40.  
  41. gnome-session-binary[2652]: WARNING: Could not get session id for session. Check that logind is properly installed and pam_systemd is getting used at login.
  42. gnome-session[2652]: gnome-session-binary[2652]: dconf-CRITICAL: unable to create file '/home/paul/.cache/dconf/user': Permission denied. dconf will not work properly.
  43. org.gnome.ScreenSaver[2549]: ** (gnome-screensaver:2733): WARNING **: Couldn't get presence status: The name org.gnome.SessionManager was not provided by any .service files
  44. org.gnome.ScreenSaver[2549]: (gnome-screensaver:2733): dconf-CRITICAL **: unable to create file '/home/paul/.cache/dconf/user': Permission denied. dconf will not work properly.
  45. smbd[3754]: [2018/04/30 14:19:21.213850, 0] ../source3/param/loadparm.c:3259(process_usershare_file)
  46. smbd[3754]: process_usershare_file: stat of /var/lib/samba/usershares/pictures failed. No such file or directory
  47. gnome-session[2652]: (deja-dup-monitor:3449): dconf-CRITICAL **: unable to create file '/home/paul/.cache/dconf/user': Permission denied. dconf will not work properly.
  48. gnome-session[2652]: (gnome-software:2890): dconf-CRITICAL **: unable to create file '/home/paul/.cache/dconf/user': Permission denied. dconf will not work properly.
  49.  
  50. lightdm: PAM unable to dlopen(pam_kwallet.so): /lib/security/pam_kwallet.so: cannot open shared object file: No such file or directory
  51. lightdm: PAM adding faulty module: pam_kwallet.so
  52. lightdm: PAM unable to dlopen(pam_kwallet5.so): /lib/security/pam_kwallet5.so: cannot open shared object file: No such file or directory
  53. lightdm: PAM adding faulty module: pam_kwallet5.so
  54. lightdm: PAM unable to dlopen(pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory
  55. lightdm: PAM adding faulty module: pam_foreground.so
  56. lightdm: pam_krb5(lightdm-greeter:session): pam_sm_open_session: entry
  57. lightdm: pam_krb5(lightdm-greeter:session): no context found, creating one
  58. lightdm: pam_krb5(lightdm-greeter:session): (user lightdm) unable to get PAM_KRB5CCNAME, assuming non-Kerberos login
  59. lightdm: pam_krb5(lightdm-greeter:session): pam_sm_open_session: exit (ignore)
  60. lightdm: pam_unix(lightdm-greeter:session): session opened for user lightdm by (uid=0)
  61. lightdm: PAM unable to dlopen(pam_kwallet.so): /lib/security/pam_kwallet.so: cannot open shared object file: No such file or directory
  62. lightdm: PAM adding faulty module: pam_kwallet.so
  63. lightdm: PAM unable to dlopen(pam_kwallet5.so): /lib/security/pam_kwallet5.so: cannot open shared object file: No such file or directory
  64. lightdm: PAM adding faulty module: pam_kwallet5.so
  65. lightdm: PAM unable to dlopen(pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory
  66. lightdm: PAM adding faulty module: pam_foreground.so
  67. lightdm: pam_succeed_if(lightdm:auth): requirement "user ingroup nopasswdlogin" not met by user "paul"
  68. lightdm: pam_krb5(lightdm:auth): pam_sm_authenticate: entry
  69. sshd[1062]: Received SIGHUP; restarting.
  70. sshd[1062]: Server listening on 0.0.0.0 port 22.
  71. sshd[1062]: Server listening on :: port 22.
  72. sshd[1062]: Received SIGHUP; restarting.
  73. sshd[1062]: Server listening on 0.0.0.0 port 22.
  74. sshd[1062]: Server listening on :: port 22.
  75. gnome-keyring-daemon[1955]: couldn't set environment variable in session: GDBus.Error:org.freedesktop.DBus.Error.UnknownMethod: No such method 'Setenv'
  76. dbus[905]: [system] Failed to activate service 'org.bluez': timed out
  77. lightdm: pam_krb5(lightdm:auth): (user paul) attempting authentication as paul@MYDOMAIN.XXX
  78. lightdm: pam_krb5(lightdm:auth): user paul authenticated as paul@MYDOMAIN.XXX
  79. lightdm: pam_krb5(lightdm:auth): (user paul) temporarily storing credentials in /tmp/krb5cc_pam_498NCw
  80. lightdm: pam_krb5(lightdm:auth): pam_sm_authenticate: exit (success)
  81. lightdm: pam_krb5(lightdm:account): pam_sm_acct_mgmt: entry
  82. lightdm: pam_krb5(lightdm:account): (user paul) retrieving principal from cache
  83. lightdm: pam_krb5(lightdm:account): pam_sm_acct_mgmt: exit (success)
  84. lightdm: pam_krb5(lightdm-greeter:session): pam_sm_close_session: entry
  85. lightdm: pam_krb5(lightdm-greeter:session): pam_sm_close_session: exit (success)
  86. lightdm: pam_unix(lightdm-greeter:session): session closed for user lightdm
  87. lightdm: pam_krb5(lightdm:setcred): pam_sm_setcred: entry (establish)
  88. lightdm: pam_krb5(lightdm:setcred): (user paul) initializing ticket cache FILE:/tmp/krb5cc_1000_pYqd6X
  89. lightdm: pam_krb5(lightdm:setcred): pam_sm_setcred: exit (success)
  90. lightdm: pam_krb5(lightdm:session): pam_sm_open_session: entry
  91. lightdm: pam_krb5(lightdm:session): pam_sm_open_session: exit (success)
  92. lightdm: pam_unix(lightdm:session): session opened for user paul by (uid=0)
  93. gnome-keyring-daemon[2463]: The Secret Service was already initialized
  94. gnome-keyring-daemon[2463]: The SSH agent was already initialized
  95. gnome-keyring-daemon[2463]: The PKCS#11 component was already initialized
  96. dbus[905]: [system] Failed to activate service 'org.bluez': timed out
  97. pkexec[3386]: paul: Error executing command as another user: Not authorized [USER=root] [TTY=unknown] [CWD=/home/paul] [COMMAND=/usr/lib/update-notifier/package-system-locked]
  98. CRON[3474]: PAM unable to dlopen(pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory
  99. CRON[3474]: PAM adding faulty module: pam_foreground.so
  100. CRON[3474]: pam_krb5(cron:account): pam_sm_acct_mgmt: entry (silent)
  101. CRON[3474]: pam_krb5(cron:account): skipping non-Kerberos login
  102. CRON[3474]: pam_krb5(cron:account): pam_sm_acct_mgmt: exit (ignore)
  103. CRON[3474]: pam_krb5(cron:setcred): pam_sm_setcred: entry (establish|silent)
  104. CRON[3474]: pam_krb5(cron:setcred): no context found, creating one
  105. CRON[3474]: pam_krb5(cron:setcred): ignoring root user
  106. CRON[3474]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  107. CRON[3474]: pam_unix(cron:session): session opened for user root by (uid=0)
  108. CRON[3474]: pam_krb5(cron:setcred): pam_sm_setcred: entry (delete|silent)
  109. CRON[3474]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  110. CRON[3474]: pam_unix(cron:session): session closed for user root
  111. CRON[3520]: PAM unable to dlopen(pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory
  112. CRON[3520]: PAM adding faulty module: pam_foreground.so
  113. CRON[3520]: pam_krb5(cron:account): pam_sm_acct_mgmt: entry (silent)
  114. CRON[3520]: pam_krb5(cron:account): skipping non-Kerberos login
  115. CRON[3520]: pam_krb5(cron:account): pam_sm_acct_mgmt: exit (ignore)
  116. CRON[3520]: pam_krb5(cron:setcred): pam_sm_setcred: entry (establish|silent)
  117. CRON[3520]: pam_krb5(cron:setcred): no context found, creating one
  118. CRON[3520]: pam_krb5(cron:setcred): ignoring root user
  119. CRON[3520]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  120. CRON[3520]: pam_unix(cron:session): session opened for user root by (uid=0)
  121. CRON[3520]: pam_krb5(cron:setcred): pam_sm_setcred: entry (delete|silent)
  122. CRON[3520]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  123. CRON[3520]: pam_unix(cron:session): session closed for user root
  124. CRON[3701]: PAM unable to dlopen(pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory
  125. CRON[3701]: PAM adding faulty module: pam_foreground.so
  126. CRON[3701]: pam_krb5(cron:account): pam_sm_acct_mgmt: entry (silent)
  127. CRON[3701]: pam_krb5(cron:account): skipping non-Kerberos login
  128. CRON[3701]: pam_krb5(cron:account): pam_sm_acct_mgmt: exit (ignore)
  129. CRON[3701]: pam_krb5(cron:setcred): pam_sm_setcred: entry (establish|silent)
  130. CRON[3701]: pam_krb5(cron:setcred): no context found, creating one
  131. CRON[3701]: pam_krb5(cron:setcred): ignoring root user
  132. CRON[3701]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  133. CRON[3701]: pam_unix(cron:session): session opened for user root by (uid=0)
  134. CRON[3701]: pam_krb5(cron:setcred): pam_sm_setcred: entry (delete|silent)
  135. CRON[3701]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  136. CRON[3701]: pam_unix(cron:session): session closed for user root
  137. CRON[3729]: PAM unable to dlopen(pam_foreground.so): /lib/security/pam_foreground.so: cannot open shared object file: No such file or directory
  138. CRON[3729]: PAM adding faulty module: pam_foreground.so
  139. CRON[3729]: pam_krb5(cron:account): pam_sm_acct_mgmt: entry (silent)
  140. CRON[3729]: pam_krb5(cron:account): skipping non-Kerberos login
  141. CRON[3729]: pam_krb5(cron:account): pam_sm_acct_mgmt: exit (ignore)
  142. CRON[3729]: pam_krb5(cron:setcred): pam_sm_setcred: entry (establish|silent)
  143. CRON[3729]: pam_krb5(cron:setcred): no context found, creating one
  144. CRON[3729]: pam_krb5(cron:setcred): ignoring root user
  145. CRON[3729]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  146. CRON[3729]: pam_unix(cron:session): session opened for user root by (uid=0)
  147. CRON[3729]: pam_krb5(cron:setcred): pam_sm_setcred: entry (delete|silent)
  148. CRON[3729]: pam_krb5(cron:setcred): pam_sm_setcred: exit (success)
  149. CRON[3729]: pam_unix(cron:session): session closed for user root
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!