login about faq

I'm trying to add a server running SSH Server 5.2 into Active Directory via Centrify and I'm running into a config error when enabling the PAM submethod.

I replaced the default auth-keyboard-interactive line with the following block.

    <auth-keyboard-interactive>
            <submethod-pam dll-path="/lib64/security/pam_centrifydc.so" />
    </auth-keyboard-interactive>

When I run the ssh-server-config-tool, I get the following error:

ssh-server-config-tool: Reconfig failed: Failed to parse submethod. / Failed to parse element auth-keyboard-interactive'. / Failed to parse elementauthentication'. / Failed to parse element `authentication-methods'.

I've been over the 5.2 documentation that came with the server install and I'm not sure why I'm getting this error still. I've also confirmed that the .so file does exist. I was testing this config on a server running version 6.4 and with the same exact config, it reloads the config just fine.

Any thoughts?

asked May 26 '15 at 19:58

ayeager's gravatar image

ayeager
1111


@ayeager also see this answer, try...

In /etc/pam.d make a new file called ssh-server-g3 with the following contents:

auth            required        /lib64/security/pam_centrifydc.so
account         required        /lib64/security/pam_centrifydc.so
password        required        /lib64/security/pam_centrifydc.so
session         required        /lib64/security/pam_centrifydc.so

in /etc/ssh2/ssh-server-config.xml

<auth-keyboard-interactive>
    <submethod-pam />
</auth-keyboard-interactive>
link

answered Jul 14 '15 at 22:30

Matt's gravatar image

Matt
568913

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×8
×3
×1
×1

Asked: May 26 '15 at 19:58

Seen: 2,561 times

Last updated: Jul 14 '15 at 22:30

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.