-
Bug
-
Resolution: Done
-
Critical
-
RH362 - RHEL9.1-en-1-20230829, RH362 - Early Access
-
None
-
en-US (English)
URL:
Reporter RHNID:
Section: - Guided Exercise: The System Security Services Framework
Language: en-US (English)
Workaround:
Description: The {{lab finish }} command does not reset the settings of .
I completed the GE and then I run the finish. However, the output of the command looked suspicious:
[student@workstation ~]$ lab finish technology-sssd SUCCESS Checking lab systems SUCCESS Setting up the SSSD exercise environment
Then, I checked the actual contents of the file /etc/pam.d/password-auth on the client:
cat /etc/pam.d/password-auth # Generated by authselect on Sun Aug 20 06:11:05 2023 # Do not modify this file manually. auth required pam_env.so auth required pam_faildelay.so delay=2000000 auth [default=1 ignore=ignore success=ok] pam_usertype.so isregular auth [default=1 ignore=ignore success=ok] pam_localuser.so auth sufficient pam_unix.so try_first_pass auth [default=1 ignore=ignore success=ok] pam_usertype.so isregular auth sufficient pam_sss.so forward_pass auth required pam_deny.so ... output ommited
Notice that our change (try_first_pass is in the file and it's not replaced with the original nullok.