Ted,
You mean the "*" field? I've replaced that with "radius", as you
suggested, so it looks like so:
(removed):radius:1000:10:radius:0:0:nocstaff:/home/(removed):/bin/ksh
It works, the user can log in fine still; however, OpenBSD still isn't
happy about it:
Checking the /etc/master.passwd file:
Login (removed) is off but still has a valid shell and alternate access files in
home directory are still readable.
Any thoughts?
Thanks,
Andrew Klettke
Optic Fusion NOC
253-830-2943
Subscribe to Optic Fusion's Twitter service for up to the minute network
issues and maintenance notifications. http://www.twitter.com/opticfusion
On 04/19/2010 02:34 PM, Ted Unangst wrote:
On Mon, Apr 19, 2010 at 3:14 PM, Andrew Klettke
<aklet...@opticfusion.net> wrote:
When I install the OS, I create a local user with local authentication.
After the box's network config is all done, I then change the login class of
the user to so I can use RADIUS, by modifying /etc/master.passwd with
`vipw', so it looks like this:
(removed):*:1000:10:radius:0:0::/home/(removed):/bin/ksh
The problem then occurs when /etc/security runs, as it gives the following
output:
Checking the /etc/master.passwd file:
Login (removed) is off but still has a valid shell and alternate access
files in
home directory are still readable.
This login is being used successfully with RADIUS, all is working as
expected, I just want to get rid of this error. Any input?
Looks like changing the password field to "radius" will work.
