Hello,
I need to move some old checks from Nagios to Icinga and from an old host to a newer one.
The new host is using SSSD for AD authentication.
I get the message:
Jan 04 13:18:29 su[10423]: pam_sss(su-l:auth): authentication failure; logname= uid=470 euid=0 tty= ruser=icinga rhost= user=oadmin
Jan 04 13:18:29 su[10423]: pam_sss(su-l:auth): received for user oadmin: 10 (User not known to the underlying authentication module)
Jan 04 13:18:29 su[10423]: FAILED SU (to oadmin) icinga on none
any ideas what to check in my /etc/pam.d ? The OS on the host where the script is running is SUSE Linux Enterprise Server 15 SP3
cat common-session
session optional pam_mkhomedir.so
session optional pam_systemd.so
session required pam_limits.so
session required pam_unix.so try_first_pass
session optional pam_sss.so
session optional pam_umask.so
session optional pam_env.socat common-password
password requisite pam_cracklib.so
password sufficient pam_unix.so use_authtok nullok shadow try_first_pass
password required pam_sss.so use_authtokcat common-auth
auth required pam_env.so
auth sufficient pam_unix.so try_first_pass
auth required pam_sss.so use_first_passcat common-account
account requisite pam_unix.so try_first_pass
account sufficient pam_localuser.so
account required pam_sss.so use_first_pass
Thanks!