Help with auth_pam plugin

Hi,

i need some help to resolve one problem with Percona’s auth_pam plugin.

I have a CentOS with mysql server 5.6 (i have also test 5.5).
I have downloaded, compiled and installed auth_pam. All of these steps ok. I have configure

/etc/pam.d/mysqld

with:

auth required pam_sss.so
account required pam_sss.so

After this, i hava created one user as specified at the documentation:

CREATE USER 'miguel.tubia'@'localhost' IDENTIFIED WITH auth_pam;

Of course, the password field is empty. I want to auth using sssd, which is configured to query our LDAP server.

On one Debian box, it has worked perfect.

Now, on this CentOS box, it doesn’t work. When I’m going to login with the new user created and my ldap password, I get a login failed error.
Anyway, if i login with an empty password, I can login ok. I think that mysql is not using the pam plugin…

I don’t know how to debug it. I don’t get any error, i don’t see any log with useful information.
Any help is welcome…

Thanks.
Best regards,
M.

Hi,

I would suggest you to read this blog post which describes how to configure Percona PAM plugin.
http://www.percona.com/blog/2013/08/14/getting-percona-pam-to-work-with-percona-server-its-client-apps/

Please check all required steps if you are missing anything and let us know if you still face the issue.