You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When spinning up a Vagrant CentOS7 box (centos/7) the machine ends up with the following /etc/pam.d/su file:
#%PAM-1.0
auth sufficient pam_rootok.so
# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth sufficient pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel" group.
#auth required pam_wheel.so use_uid
auth substack system-auth
auth include postlogin
account sufficient pam_succeed_if.so uid = 0 use_uid quiet
account [success=1 default=ignore] \
pam_succeed_if.so user = vagrant use_uid quiet
account required pam_succeed_if.so user notin root:vagrant
account include system-auth
password include system-auth
session include system-auth
session include postlogin
session optional pam_xauth.so
If the content of this file is being manipulated using Augeas, this breaks due to the multiline:
See the related issue in the CentOS repo: CentOS/sig-cloud-instance-build#139
When spinning up a Vagrant CentOS7 box (
centos/7
) the machine ends up with the following/etc/pam.d/su
file:If the content of this file is being manipulated using Augeas, this breaks due to the multiline:
The default lens for PAM does not support this.
In our case we use Augeas within Puppet to handle configuration management.
According to the CentOS people, this is considered a bug in Augeas. Can this be fixed?
The text was updated successfully, but these errors were encountered: