https://bugzilla.redhat.com/show_bug.cgi?id=1904592
--- Comment #4 from Adrien D <email(a)linuxtricks.fr> ---
Test to connect with CLI from local account :
[admin@w-lyo-tec-5 ~]$ LANG=C su - adrien.linuxtricks(a)linuxtricks.lan
Password:
Warning: your password will expire in 0 days.
Last login: Sat Dec 5 21:41:34 CET 2020 on pts/0
And log with the initial account :
déc. 05 21:44:01 w-lyo-tec-5 su[5061]: pam_sss(su-l:auth): authentication
success; logname= uid=1000 euid=0 tty=pts/1 ruser=admin rhost=
user=adrien.linuxtricks(a)LINUXTRICKS.LAN
déc. 05 21:44:01 w-lyo-tec-5 audit[5061]: USER_AUTH pid=5061 uid=1000 auid=1000
ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:authentication grantors=pam_usertype,pam_usertype,pam_sss
acct="adrien.linuxtricks(a)LINUXTRICKS.L" exe="/usr/bin/su"
hostname=w-lyo-tec-5
addr=? terminal=pts/1 res=success'
déc. 05 21:44:01 w-lyo-tec-5 su[5061]: pam_unix(su-l:account): password for
user adrien.linuxtricks(a)LINUXTRICKS.LAN will expire in 0 days
déc. 05 21:44:01 w-lyo-tec-5 audit[5061]: USER_ACCT pid=5061 uid=1000 auid=1000
ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:accounting grantors=pam_unix,pam_sss,pam_permit
acct="adrien.linuxtricks(a)LINUXTRICKS.L" exe="/usr/bin/su"
hostname=w-lyo-tec-5
addr=? terminal=pts/1 res=success'
déc. 05 21:44:01 w-lyo-tec-5 su[5061]: (to adrien.linuxtricks(a)LINUXTRICKS.LAN)
admin on pts/1
déc. 05 21:44:01 w-lyo-tec-5 audit[5061]: CRED_ACQ pid=5061 uid=1000 auid=1000
ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:setcred grantors=pam_localuser,pam_sss
acct="adrien.linuxtricks(a)LINUXTRICKS.L" exe="/usr/bin/su"
hostname=w-lyo-tec-5
addr=? terminal=pts/1 res=success'
déc. 05 21:44:01 w-lyo-tec-5 su[5061]: pam_unix(su-l:session): session opened
for user adrien.linuxtricks(a)LINUXTRICKS.LAN(uid=1876401104) by (uid=1000)
déc. 05 21:44:01 w-lyo-tec-5 su[5061]: pam_lastlog(su-l:session): username too
long, output might be inaccurate
déc. 05 21:44:01 w-lyo-tec-5 audit[5061]: USER_START pid=5061 uid=1000
auid=1000 ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:session_open
grantors=pam_keyinit,pam_keyinit,pam_limits,pam_systemd,pam_unix,pam_sss,pam_umask,pam_xauth
acct="adrien.linuxtricks(a)LINUXTRICKS.L" exe="/usr/bin/su"
hostname=w-lyo-tec-5
addr=? terminal=pts/1 res=success'
déc. 05 21:44:05 w-lyo-tec-5 systemd[1]: systemd-localed.service: Succeeded.
déc. 05 21:44:05 w-lyo-tec-5 audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295
ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-localed
comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=?
terminal=?
res=success'
déc. 05 21:44:05 w-lyo-tec-5 audit: BPF prog-id=94 op=UNLOAD
déc. 05 21:44:05 w-lyo-tec-5 audit: BPF prog-id=93 op=UNLOAD
déc. 05 21:44:05 w-lyo-tec-5 audit: BPF prog-id=92 op=UNLOAD
Test to connect an other account :
[admin@w-lyo-tec-5 ~]$ LANG=C su - juliette.canard(a)linuxtricks.lan
Password:
Warning: your password will expire in 0 days.
su: Permission denied
An the log :
éc. 05 21:44:47 w-lyo-tec-5 audit[5104]: USER_AUTH pid=5104 uid=1000 auid=1000
ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:authentication grantors=pam_usertype,pam_usertype,pam_sss
acct="juliette.canard(a)LINUXTRICKS.LAN" exe="/usr/bin/su"
hostname=w-lyo-tec-5
addr=? terminal=pts/1 res=success'
déc. 05 21:44:47 w-lyo-tec-5 su[5104]: pam_sss(su-l:auth): authentication
success; logname= uid=1000 euid=0 tty=pts/1 ruser=admin rhost=
user=juliette.canard(a)LINUXTRICKS.LAN
déc. 05 21:44:47 w-lyo-tec-5 su[5104]: pam_unix(su-l:account): password for
user juliette.canard(a)LINUXTRICKS.LAN will expire in 0 days
déc. 05 21:44:47 w-lyo-tec-5 audit[5104]: USER_ACCT pid=5104 uid=1000 auid=1000
ses=3 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
msg='op=PAM:accounting grantors=? acct="juliette.canard(a)LINUXTRICKS.LAN"
exe="/usr/bin/su" hostname=w-lyo-tec-5 addr=? terminal=pts/1 res=failed'
déc. 05 21:44:47 w-lyo-tec-5 su[5104]: pam_sss(su-l:account): Access denied for
user juliette.canard(a)LINUXTRICKS.LAN: 6 (Autorisation refusée)
déc. 05 21:44:47 w-lyo-tec-5 su[5104]: FAILED SU (to
juliette.canard(a)LINUXTRICKS.LAN) admin on pts/1
--
You are receiving this mail because:
You are on the CC list for the bug.
You are the assignee for the bug.