This repository has been archived by the owner on Feb 28, 2024. It is now read-only.
pam tacacs fallback not working #79
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
hello i try to use pam_tacplus1.3.6 to authenticate users that try to connect to linux server using cisco ACS as a tacacs server . the authentication work fine if the tacacs server is alive but if all tacacs servers are dead i can't authentifiacte using my local account
this is my sshd config
auth sufficient pam_tacplus.so debug server=192.168.253.10 secret=natel221!
auth required pam_sepermit.so
auth include password-auth
account required pam_nologin.so
account sufficient pam_tacplus.so debug service=ppp protocol=lcp
account include password-auth
password include password-auth
pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session required pam_loginuid.so
session optional pam_tacplus.so debug server=192.168.253.10 secret=natel221! service=ppp protocol=lcp
pam_selinux.so open should only be followed by sessions to be executed in the user context
session required pam_selinux.so open env_params
session optional pam_keyinit.so force revoke
session include password-auth
The text was updated successfully, but these errors were encountered: