06-13-2011 01:44 AM
I've see that the following message appears in syslog : "sshd: PAM_AUTHZ: query daemon return failure status 7"
Any Ideas?? Thank in advance!
11-15-2012 12:04 PM
I know this thread is old, but I thought I would share my experience so far. I too have not been able to get the check_rhds_policy to work with pam_authz. I setup the proxy user and set the aci's specified in the ldaup 5.01 admin guide. In the end, the only way I could get the password policies to work is by adding filters to pam_authz.policy.
This is about all you need to make sure users cannot login even though the directory shows thes users paswords expired, or account locked/inactive.
I hope this helps someone.
12-20-2012 01:23 PM
I need to revise this. I ran into issues. This has worked for me.
I am still trying to figure out how to get the status:rhds:check_rdhs_policy line to work properly.