AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.


#Power
 View Only

  • 1.  AIX 6.1, LDAP, and ssh

    Posted Thu January 28, 2010 10:47 AM

    Originally posted by: jcochrane


    I'm building my first couple of AIX 6.1 environments and am encountering an issue with the combination of ssh and LDAP. I've got UsePAM set in sshd_config, have SYSTEM set to LDAP as the default in /etc/security/user, and have verified that LDAP is working, but I can't ssh to a user without having an entry for the user in /etc/security/user with SYSTEM and registry set to LDAP for that user. The existing configuration works for AIX 5.3, just not 6.1. The main error I can find is:

    Jan 28 11:43:00 hostb auth|security:info sshd213016: Password can't be changed for user redacted: LDAP: 3004-318 Error obtaining the user's password information.
    Jan 28 11:43:00 hostb auth|security:info sshd213016: Failed password for redacted from 192.168.X.X port 56475 ssh2
    #AIX-Forum


  • 2.  Re: AIX 6.1, LDAP, and ssh

    Posted Thu January 28, 2010 11:06 AM

    Originally posted by: jcochrane


    More information:

    1. oslevel -s
    6100-04-02-1007

    lslpp -l|grep ssh
    openssh.base.client 5.2.0.5300 COMMITTED Open Secure Shell Commands
    openssh.base.server 5.2.0.5300 COMMITTED Open Secure Shell Server
    openssh.man.en_US 5.2.0.5300 COMMITTED Open Secure Shell
    openssh.msg.en_US 5.2.0.5300 COMMITTED Open Secure Shell Messages -
    openssh.base.client 5.2.0.5300 COMMITTED Open Secure Shell Commands
    openssh.base.server 5.2.0.5300 COMMITTED Open Secure Shell Server

    LDAP server is on AIX 5.3, not that it should matter. Login works from the console.
    #AIX-Forum


  • 3.  Re: AIX 6.1, LDAP, and ssh

    Posted Thu January 28, 2010 07:49 PM

    Originally posted by: Wallace_Lam


    We are having similar issue once we have patched a 6.1 TL4 SP1 node to 6.1 TL4 SP2.
    #AIX-Forum


  • 4.  Re: AIX 6.1, LDAP, and ssh

    Posted Thu January 28, 2010 09:13 PM

    Originally posted by: Wallace_Lam


    We logged a call with IBM and they replied in an hour with the efix IZ68635 which could be downloaded from
    testcase.software.ibm.com:/fromibm/aix

    We are about to test it.
    #AIX-Forum


  • 5.  Re: AIX 6.1, LDAP, and ssh

    Posted Fri January 29, 2010 04:09 PM

    Originally posted by: jcochrane


    OK, I'll be doing further testing, but at least initially, the IZ68635 fix is working for me, thanks.
    #AIX-Forum


  • 6.  Re: AIX 6.1, LDAP, and ssh

    Posted Mon July 12, 2010 04:01 AM

    Originally posted by: Oratorio


    hi, I have the same problem since upgrading from AIX 5.3 to 6.1

    >oslevel -s
    6100-02-02-0849

    I can ssh, no problem with login to the system

    but db2 8 latest fixpack doesn't recognize password !

    any idea ?

    fix IZ68635 is not installed
    #AIX-Forum


Related Content