000013621 - How to configure 'login' with the RSA PAM Agent with Red Hat Linux 4.x

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000013621
Applies ToRSA Authentication Agent for PAM 6.0
IssueLocal Login is not Challenged by RSA PAM Agent
Editing the /etc/pam.d/login file has no effect.
CauseThe graphical display module file not edited to challenge a user for RSA PAM Agent
ResolutionEdit gdm file located in /etc/pam.d directory
Notes

To configure local login to be challenged by the RSA PAM Agent on Red Hat Linux , follow these steps:


 


  1. cd to /etc/pam.d/
  2. Open the gdm file. The following text is displayed:

 


#%PAM-1.0


auth       required     pam_env.so


auth       required     pam_stack.so service=system-auth


auth       required     pam_nologin.so


account    required     pam_stack.so service=system-auth


password   required     pam_stack.so service=system-auth


session    required     pam_stack.so service=system-auth


session    optional     pam_console.so


 


  1. Comment the following lines and add the last line as so:

 


#auth       required    pam_env.so


#auth       required    pam_stack.so service=system-auth


#auth       required    pam_nologin.so


auth                  required          /path/to/pam_securid.so         #(use absolute path)


 


 


  1. Reboot the system.

 


You should now be challenged by the RSA PAM agent when you login the console locally.


 


 


Note: Before you make any configuration changes, make backup copies of the original


configuration files. BE SURE NOT TO LOCK YOURSELF OUT OF THE MACHINE.

Legacy Article IDa42488

Attachments

    Outcomes