Can't authenticate an NIS user. Please help!

Discussion in 'Linux Networking' started by Kayode Odeyemi, May 31, 2012.

  1. Hello experts,

    I know my topic has been discussed all over the internet but I'm yet
    to find a solution that works for me. I've been on this issue for over
    a month, please don't ignore.

    Below are dumps of necessary config files:

    /etc/pam.d/common-auth
    ------------------------------------
    # here are the per-package modules (the "Primary" block)
    auth [success=1 default=ignore] pam_unix.so nullok_secure
    #auth sufficient /lib/security/pam_nis.so item=user sense=allow
    map=users.byname value=compsci
    #auth requisite pam_unix.so
    # here's the fallback if no module succeeds
    auth requisite pam_deny.so
    # prime the stack with a positive return value if there isn't one
    already;
    # this avoids us returning an error just because nothing sets a
    success code
    # since the modules above will each just jump around
    auth required pam_permit.so
    # and here are more per-package modules (the "Additional" block)
    auth optional pam_ecryptfs.so unwrap
    # end of pam-auth-update config

    /etc/nsswitch.conf
    --------------------------


    libc6
    ------
    Package: libc6
    Priority: required
    Section: libs
    Installed-Size: 10472
    Maintainer: Ubuntu Developers <>
    Original-Maintainer: GNU Libc Maintainers <debian-
    >
    Architecture: amd64
    Source: eglibc
    Version: 2.13-20ubuntu5.1
    Replaces: belocs-locales-bin, libc6-amd64
    Provides: glibc-2.13-1
    Depends: libc-bin (= 2.13-20ubuntu5.1), libgcc1, tzdata
    Suggests: glibc-doc, debconf | debconf-2.0, locales
    Conflicts: belocs-locales-bin, libc6-amd64, prelink (<< 0.0.20090925),
    tzdata (<< 2007k-1), tzdata-etch
    Breaks: nscd (<< 2.13)
    Filename: pool/main/e/eglibc/libc6_2.13-20ubuntu5.1_amd64.deb
    Size: 4148800
    MD5sum: fa65d4b84a0b911c20147f10d18aabd3
    SHA1: bdeb94bb7589375ffa8b856892820a793d061dfd
    SHA256:
    25f27e632e41dbd7c3032b28d0fbeac7972fdf13d74885252d01de5f9755cd01
    Description-en: Embedded GNU C Library: Shared libraries
    Contains the standard libraries that are used by nearly all programs
    on
    the system. This package includes shared versions of the standard C
    library
    and the standard math library, as well as many others.
    Multi-Arch: same
    Homepage: http://www.eglibc.org
    Description-md5: 5089b4da6684d7432ab618fb5b79cec5
    Bugs: https://bugs.launchpad.net/ubuntu/+filebug
    Origin: Ubuntu
    Supported: 18m
    Task: minimal

    /etc/pam.d/common-password
    --------------------------------------------
    # here are the per-package modules (the "Primary" block)
    password [success=1 default=ignore] pam_unix.so obscure sha512 nis
    #password required pam_unix.so
    # here's the fallback if no module succeeds
    password requisite pam_deny.so
    # prime the stack with a positive return value if there isn't one
    already;
    # this avoids us returning an error just because nothing sets a
    success code
    # since the modules above will each just jump around
    password required pam_permit.so
    # and here are more per-package modules (the "Additional" block)
    password optional pam_ecryptfs.so
    # end of pam-auth-update config

    rpcinfo
    ----------
    program vers proto port service
    100000 4 tcp 111 portmapper
    100000 3 tcp 111 portmapper
    100000 2 tcp 111 portmapper
    100000 4 udp 111 portmapper
    100000 3 udp 111 portmapper
    100000 2 udp 111 portmapper
    100024 1 udp 57061 status
    100024 1 tcp 50122 status
    100007 2 udp 767 ypbind
    100007 1 udp 767 ypbind
    100007 2 tcp 768 ypbind
    100007 1 tcp 768 ypbind

    distro
    --------
    Linux appserver 3.0.0-17-server #30-Ubuntu SMP Thu Mar 8 22:15:30 UTC
    2012 x86_64 x86_64 x86_64 GNU/Linux

    auth.log
    -----------
    May 31 17:39:45 prisa-appserver auth: pam_unix(dovecot:auth):
    authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=dupe
    rhost=192.168.128.11 user=dupe
    May 31 17:40:41 auth: last message repeated 2 times
    May 31 17:42:53 prisa-appserver sudo: pam_unix(sudo:auth):
    authentication failure; logname=prisa uid=0 euid=0 tty=/dev/pts/0
    ruser=prisa rhost= user=prisa
    May 31 17:43:06 prisa-appserver sudo: prisa : TTY=pts/0 ; PWD=/home/
    prisa ; USER=root ; COMMAND=/usr/bin/apt-cache show libc6
    May 31 17:44:24 prisa-appserver sudo: prisa : TTY=tty1 ; PWD=/home/
    prisa ; USER=root ; COMMAND=/usr/bin/apt-cache show libc6
    May 31 17:45:14 prisa-appserver su[2274]: pam_unix(su:auth):
    authentication failure; logname=prisa uid=1000 euid=0 tty=/dev/tty1
    ruser=prisa rhost= user=femmy
    May 31 17:45:16 prisa-appserver su[2274]: pam_authenticate:
    Authentication failure
    May 31 17:45:16 prisa-appserver su[2274]: FAILED su for femmy by prisa
    May 31 17:45:16 prisa-appserver su[2274]: - /dev/tty1 prisa:femmy

    nsswitch.conf
    --------------------
    \# /etc/nsswitch.conf
    #
    # Example configuration of GNU Name Service Switch functionality.
    # If you have the `glibc-doc-reference' and `info' packages installed,
    try:
    # `info libc "Name Service Switch"' for information about this file.

    passwd: compat nis
    group: compat nis
    shadow: compat nis

    #passwd_compat: nis
    #group_compat: nis
    #shadow_compat: nis
    #
    #shadow files nis

    hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4 nis
    #hosts: files dns nis
    #hosts: nis files dns
    networks: files

    protocols: nis files
    services: nis files
    ethers: nis files
    rpc: nis files
    netmasks: nis files
    netgroup: nis
    bootparams: nis files
    publickey: nis files

    automount: files nis
    aliases: files nis

    Thanks for reading.
     
    Kayode Odeyemi, May 31, 2012
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.