Hi List, I'm using Gdm for login, libnss-ldap for general user accounts, libpam-krb5 for auth and libpam-openafs-session for getting AFS tokens. For while home dirs are local, not AFS.
"Networked" (LDAP/krb5) accounts works well. GDM login gives me (through PAM) gives me kerberos tickets and AFS token. After that I log out and get GDM login screen just like it should be. However, if I log in using a classical local account (/etc/passwd entry, no Kerberos principal), when I try to logout, gnome seems to end session OK, but X Server just does not close and shows its traditional appearance (gray-pixmapped background and "X"-shapped mouse cursor) without any action available except mouse-cursor moving. At same time, GDM complains that vt7 is being locked by that X instance, and ask me to start another X server at vt8. I don know why it happens just with GDM. WDM and text-mode login didn't show this problem. I used same invocation for KRB5 and OpenAFS modules in PAM for both login, GDM and WDM (@include directive in /etc/pam.d files): ... auth sufficient pam_krb5.so forwardable ccache=FILE:/tmp/krb5cc_%u_%p debug session optional pam_openafs_session.so debug session optional pam_krb5.so ... If I discard pam_openafs_session, GDM logout turns to work well. As a workaround, I'm using "handled=true" in gdm.conf and it seems ok: ... # Definition of the standard X server. [server-Standard] name=Standard server command=/usr/X11R6/bin/X -audit 0 -terminate flexible=true handled=true ^^^^ ... Any ideas ?? -- ------------------------------------------------- Marcio Scheibler
