permission denied despite correct password
今天我在一个新reimage的系统上给oracle用户设置了一个简单的密码,但是我发现su的时候报错。一开始我还以为是密码过于简单,无法通过规则呢。后来发现是下面的原因
要么将oracle用户添加到wheel组,要么在/etc/pam.d/su里禁用wheel组
#auth required pam_wheel.so use_uid
如何在/etc/pam.d/su里配置了wheel,但是如果某个用户不在wheel组里的话,则该用户没有su的权限,su到任何一个用户都会失败
[oracle@scaqai06adm07 ~]$ su - oracle
Password:
su: Permission denied
[root@scaqai06adm07 pam.d]# cat /etc/group | grep wheel
wheel:x:10:
[root@scaqai06adm07 pam.d]# cat su
#%PAM-1.0
auth sufficient pam_rootok.so
# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth sufficient pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel" group.
#auth required pam_wheel.so use_uid
auth substack system-auth
auth include postlogin
account sufficient pam_succeed_if.so uid = 0 use_uid quiet
account include system-auth
password include system-auth
session include system-auth
session include postlogin
session optional pam_xauth.so
[root@scaqai06adm08 pam.d]# cat su | grep -i wheel
# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth sufficient pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel" group.
#auth required pam_wheel.so use_uid