mart-w/kanidm
1
0
Fork 0
mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 20:47:01 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update suse.md to avoid Authentication token manipulation error (#2973)

Browse source 
The option use_authok for pam_unix requires a password on the stack, for example from a previous module such as pam_cracklib.
If that is not the case, pam_unix fails, leading to this error:

    ~ # passwd
    passwd: Authentication token manipulation error
    passwd: password unchanged

Signed-off-by: Tiziano Müller <tiziano.mueller@hpe.com>
This commit is contained in:
Tiziano Müller 2024-08-15 00:29:40 +00:00 committed by GitHub
parent 7ec36e5c6f
commit 50da3ff9ae
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
book/src/integrations/pam_and_nsswitch/suse.md
View file

@ -53,7 +53,7 @@ auth required pam_deny.so
# Controls flow of what happens when a user invokes the passwd command. Currently does NOT # Controls flow of what happens when a user invokes the passwd command. Currently does NOT
# push password changes back to kanidm # push password changes back to kanidm
password [default=1 ignore=ignore success=ok] pam_localuser.so password [default=1 ignore=ignore success=ok] pam_localuser.so
password required pam_unix.so use_authtok nullok shadow try_first_pass password required pam_unix.so nullok shadow try_first_pass
password [default=1 ignore=ignore success=ok] pam_succeed_if.so uid >= 1000 quiet_success quiet_fail password [default=1 ignore=ignore success=ok] pam_succeed_if.so uid >= 1000 quiet_success quiet_fail
password required pam_kanidm.so password required pam_kanidm.so