Never mind, I found out that this has more to do with my institution’s extremely secure permissions and user management system. I’m going to just call the cron commands from my sudo user account. On Wednesday, May 29, 2024 at 2:21:16 PM UTC-4 Arta Seyedian wrote:
> Hello. > > I am getting this error repeatedly in my server log digest everyday: > **Unmatched Entries** PAM ERROR (Permission denied) FAILED to authorize > user with PAM (Permission denied) PAM ERROR (Permission denied) FAILED to > authorize user with PAM (Permission denied) PAM ERROR (Permission denied) > PAM ERROR (Permission denied) FAILED to authorize user with PAM (Permission > denied) FAILED to authorize user with PAM (Permission denied) PAM ERROR > (Permission denied) FAILED to authorize user with PAM (Permission denied) > PAM ERROR (Permission denied) PAM ERROR (Permission denied) FAILED to > authorize user with PAM (Permission denied) FAILED to authorize user with > PAM (Permission denied) > > I was under the impression that I had resolved this issue because I found > this article > <https://serverfault.com/questions/620157/how-to-fix-a-crontab-access-issue-with-a-pam-configuration-error-message/620186#620186>, > > but I guess it didn’t stick for some reason? Not entirely sure but somehow > access.conf went back to how it was before. > > And then I decided to ssh into my server a couple of weeks after I > finished installing and I wasn’t allowed in. It would just close the port > and kick me out as soon as I would get in. > > I asked my coworker and he said, > > Hey Arta, I also cannot get in, the issue is that PAM is connected to the > Azure AD and that the DSpace user is not in AD so I guess that is why the > cron tab isn’t working. Hopefully we can just restart the SSH daemon on the > server. A lot of the system configs are set by puppet which is a remote > management service so be careful editing those as clearly it can cause some > unintended consequences > > So now I have to figure out how to set PAM permissions for my dspace user > account to run cron chores without touching system config files like > access.conf? And then his advice was to use root but… I have Tomcat set > up under the dspace user account, not root, and the installation > instructions say to set cron under the same account that runs Tomcat. > > Please let me know what I should do in this situation. We don’t have > access to Azure AD, which would be the simplest solution. > > -- All messages to this mailing list should adhere to the Code of Conduct: https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx --- You received this message because you are subscribed to the Google Groups "DSpace Technical Support" group. To unsubscribe from this group and stop receiving emails from it, send an email to dspace-tech+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/dspace-tech/513a1528-7169-42ec-8473-ae460ea1155cn%40googlegroups.com.
