Can't add new user in lucid

Colin Law clanlaw at googlemail.com
Fri Mar 26 15:32:02 UTC 2010 

On 26 March 2010 15:08, Tom H <tomh0665 at gmail.com> wrote:
>>>> I created a new user using System Administration Users and Groups but
>>>> am unable to login as that user.  I get an authentication error.  I
>>>> have tried creating several users and have double checked passwords
>>>> but to no avail.
>
>>>> In auth.log I see
>>>> piglet gdm-session-worker[2554]: pam_winbind(gdm:auth): request
>>>> wbcLogonUser failed: WBC_ERR_AUTH_ERROR, PAM error: PAM_USER_UNKNOWN
>>>> (10), NTSTATUS: NT_STATUS_NO_SUCH_USER, Error message was: No such
>>>> user
>
>>>> In addition in what may be a related or separate bug if I try to
>>>> change the password of the user fred using
>>>> sudo passwd fred
>>>> I get
>>>> passwd: System err
>>>> and in auth.log
>>>> Mar 26 12:50:28 piglet sudo:   colinl : TTY=pts/0 ; PWD=/home/colinl ;
>>>> USER=root ; COMMAND=/usr/bin/passwd fred
>>>> Mar 26 12:50:28 piglet passwd[2666]: pam_winbind(passwd:chauthtok):
>>>> valid_user: wbcGetpwnam gave WBC_ERR_DOMAIN_NOT_FOUND
>
>>> Are you authenticaticating through winbind? (== are you authenticating
>>> through an AD server?)
>
>> Not that I am aware of, it is a standard desktop install of lucid beta
>> 1 with updates.
>
> Check the common-* files in /etc/pam.d for lines with "pam_winbind.so".
>
common-account has
# here are the per-package modules (the "Primary" block)
account [success=2 new_authtok_reqd=done default=ignore]        pam_unix.so
account [success=1 new_authtok_reqd=done default=ignore]        pam_winbind.so
# here's the fallback if no module succeeds
account requisite                       pam_deny.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around
account required                        pam_permit.so

common-auth has
# here are the per-package modules (the "Primary" block)
auth    [success=2 default=ignore]      pam_unix.so nullok_secure
auth    [success=1 default=ignore]      pam_winbind.so krb5_auth
krb5_ccache_type=FILE cached_login try_first_pass
# here's the fallback if no module succeeds
auth    requisite                       pam_deny.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around
auth    required                        pam_permit.so

common-password has
# here are the per-package modules (the "Primary" block)
password        [success=1 default=ignore]      pam_unix.so obscure sha512
# here's the fallback if no module succeeds
password        requisite                       pam_deny.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around
password        required                        pam_permit.so
# and here are more per-package modules (the "Additional" block)
password        requisite                       pam_winbind.so
password        optional        pam_gnome_keyring.so

common-session has
# here are the per-package modules (the "Primary" block)
session [default=1]                     pam_permit.so
# here's the fallback if no module succeeds
session requisite                       pam_deny.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around
session required                        pam_permit.so
# and here are more per-package modules (the "Additional" block)
session required        pam_unix.so
session optional                        pam_winbind.so
session optional                        pam_ck_connector.so nox11

and common-session-noninteractive has
# here are the per-package modules (the "Primary" block)
session [default=1]                     pam_permit.so
# here's the fallback if no module succeeds
session requisite                       pam_deny.so
# prime the stack with a positive return value if there isn't one already;
# this avoids us returning an error just because nothing sets a success code
# since the modules above will each just jump around
session required                        pam_permit.so
# and here are more per-package modules (the "Additional" block)
session required        pam_unix.so
session optional                        pam_winbind.so

So there are references to winbind.

Colin

More information about the ubuntu-users mailing list