Bug 9648 - pam_winbind does not support use_uid option and PAM_IGNORE return value
pam_winbind does not support use_uid option and PAM_IGNORE return value
Status: NEW
Product: Samba 3.6
Classification: Unclassified
Component: Winbind
3.6.12
All All
: P5 normal
: ---
Assigned To: Guenther Deschner
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-02-09 18:40 UTC by Alexey
Modified: 2013-02-20 00:17 UTC (History)
1 user (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Alexey 2013-02-09 18:40:17 UTC
I've tried to use pam_winbind.so module in pam.d/so-l configuration file with require_membership_of option but was surprised that pam_winbind cannot use original user credentials (like pam_wheel does with option use_uid) and cannot be configured to reply PAM_IGNORE instead of PAM_SUCCESS or FAIL - it always checked for root account and not my AD user.
It will be nice if you can add support for these options.