We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

local FTP users dont work but AD auth'd FTP users do ?

Medium Priority
1,760 Views
Last Modified: 2012-06-27
When i try to use a local RedHat linux account on the server to FTP, I am getting this error::

request failed: No such user, PAM error was User not known to the underlying authentication module (10), NT error was NT_STATUS_NO_SUCH_USER

AD windbind users work just fine...

PLEASE HELP pleeeease thx so much
Comment
Watch Question

JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
I verified my local user by

first creating a brand new account
adduser -c -m testaccount

# su - testaccount
$ whoami
testaccount
$ pwd
/home/testaccount

then did a passwd on it just to be sure I have the right password...

passwd testaccount
changed succesfully

then did a chmod -R /home/testaccount

and it still doesnt work ?




Ive found documentation to tinker with
/etc/pam.d/system-auth  but I didnt really wanna mess with that since I wasnt masterful of it
please help
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
vi /etc/group seems to list them fine at the bottom of the list in thier independent isolated user group

testaccount:x:523:


this is outside the usergroup Ive configured for remote AD winind authentication that still does work thanks goodness...

thoughts?

thanks!
Gabriel OrozcoSolution Architect

Commented:
which FTP server are you using?

you can tell vsftp to authorize LDAP users while disallowing local users.

that should be configured at the ftp server not on PAM
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
I want most all to auth thru AD... but there are some that still need to auth locally...
maybe thats not thru vsftp ... not sure what to check
I need testaccount to auth locally not thru AD
thoughts ?

>>which FTP server are you using?
not sure what you mean .. the end user ftp client software ?
server side I think vsftp (that service IS running) but how to I tell for sure...

thanks
Solution Architect
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
I got this back

/usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf

ok...
so PAM isnt the problem then since AD users are working... I dont want to touch it in fear those user's authentication would break.

so now turning solely to vsftp  but what to look for in my RHEL 5 System ?
Gabriel OrozcoSolution Architect
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
all those settings read exactly the way you have them uncommented and in order line by line ...

was ok before I saw it worked like last month not sure what changed :(

JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
I tried rebuilding the accounts and nothing seems to work...
traversing logs next for specific error code :(
Gabriel OrozcoSolution Architect
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
>>could you restart the service
figuring you mean service restart xinetd

May  4 09:30:18 muse passwd: pam_unix(passwd:chauthtok): unrecognized option [use_authok]
May  4 09:30:18 muse passwd: pam_unix(passwd:chauthtok): unrecognized option [use_authok]
May  4 09:30:29 muse passwd: pam_unix(passwd:chauthtok): password changed for teamb
May  4 09:30:57 muse vsftpd: pam_listfile(vsftpd:auth): Refused user teamb for service vsftpd
May  4 09:30:57 muse vsftpd: pam_winbind(vsftpd:auth): getting password (0x00000010)
May  4 09:30:57 muse vsftpd: pam_winbind(vsftpd:auth): pam_get_item returned a password
May  4 09:30:57 muse vsftpd: pam_winbind(vsftpd:auth): request failed: No such user, PAM error was User not known to the underlying authentication module (10), NT error was NT_STATUS_NO_SUCH_USER
JAaron AndersonProgramming Architect @ Widener University
Commented:
Unlock this solution with a free trial preview.
(No credit card required)
Get Preview
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
thx for all the exercise Redimodo of going through the steps...
JAaron AndersonProgramming Architect @ Widener University

Author

Commented:
I am giving myself 1/4 answer I deduced it IS about PAM in contrast to Ridimodo's initial posted statement
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a free trial preview!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.