Performing an su to a QAS user intermittently fails to complete on Redhat 5.x.
No error message is shown, however the user switch fails and the session appears to hang.
This has been observed when using an alternate home directory creation script.
For example in /etc/opt/quest/vas/vas.conf the following entry exists:
[vas_auth]
homedir-creation-script = /bin/true
Workaround:
Remove the create_homedir option for the su session entry in PAM.
For example:
The PAM su configuration on Redhat 5.6 references the system-auth file.
Change the session entry for pam_vas3.so as follows:
vi /etc/pam.d/system-auth
Change from:
-------------------------------------------------------
session required pam_vas3.so create_homedir <=== Remove create_homedir
session requisite pam_vas3.so echo_return
-------------------------------------------------------
To:
-------------------------------------------------------
session required pam_vas3.so
session requisite pam_vas3.so echo_return
-------------------------------------------------------
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center