What am I missing? #25
Comments
|
Hello, sorry for the late response to this issue. The scripts The first script is called by the PAM authentication stack when trying to log in the user. The currently released version of keymaker incorrectly raises errors in Your second issue means that /usr/sbin/keymaker-get-public-keys failed to retrieve the keys for the user. This script is called by sshd when trying to log in the user. The failure to retrieve keys can happen because you did not upload the user's public key with |
|
Closing due to lack of response. Please reopen if you are still having difficulties. |
I've got everything working, but I'm down to two problems:
If I tail /var/log/secure, I get this: /usr/local/bin/keymaker-create-account-for-iam-user failed: exit code 2
If I modify that file and set $PAM_USER to $1, and then call the file from the command line, it works fine. When it's being called via PAM Module, it fails. No idea what is wired incorrectly for PAM_USER.
If I paste my public key into the file and echo it, my user authenticates just fine. If I call this file directly from the command line, it gives me back the authorized_keys I expect. If I remove 'get_authorized_keys "$@"' I get the expected keymaker help menu. If I just do "keymaker get_authorized_keys" without the "$@", I get nothing. It seems to be behaving really weird when I try to call keymaker with any arguments. It doesn't return the authorized_keys, so the user doesn't get authenticated.
This is all on CentOS 7.3
The text was updated successfully, but these errors were encountered: