[Swan] XAUTH: PAM auth chain failed with '7' on CentOS 7
Paul Wouters
paul at nohats.ca
Fri Aug 22 17:57:38 EEST 2014
On Fri, 22 Aug 2014, Remy van Elst wrote:
>> chpasswd(8) can do that, but the pam method in pluto doesn't run anything
>> through crypt (it will leave the password verification to the pam stack),
>> and crypt would support the SHA512 type. Is your system-auth configuration much
>> different than the RHEL/CentOS default?
>
> It is a default CentOS (7) shadow file.
I am confused. Are you trying to use a copy of /etc/shadow as
/etc/ipsec.d/passwd with xauthby=file? Or are you trying to use system
authentication with xauthby=pam ?
If the first, did you actually add ":connname" to each line and remove
the trailing colons?
Paul
More information about the Swan
mailing list