IDCS: Linux PAM Not Connecting - AUTH-1021 And Pam Return Code 7
(Doc ID 2879275.1)
Last updated on MARCH 30, 2023
Applies to:
Identity Cloud Service (IDCS) - Version N/A to N/AInformation in this document applies to any platform.
Goal
Configuration of Linux PAM module is not successful: https://docs.oracle.com/en/cloud/paas/identity-cloud/uaids/typical-workflow-managing-linux-pam.html
I am not able to connect per the following step: https://docs.oracle.com/en/cloud/paas/identity-cloud/uaids/test-authentication-linux-using-oracle-identity-cloud-service.html
Logs (/opc/pam_nss.log) note the following upon testing login - How do I resolve the following error?
AUTH-1021 And Pam Return Code 7
For a visual guide on the PAM module configuration, you may also visit: https://learnoci.cloud/how-to-enable-idcs-pam-on-oracle-linux-7-and-use-mfa-53164b36595c
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Configuration of Linux PAM module is not successful: https://docs.oracle.com/en/cloud/paas/identity-cloud/uaids/typical-workflow-managing-linux-pam.html |
Test Authentication into Linux Using Oracle Identity Cloud Service |
AUTH-1021 And Pam Return Code 7 |
Solution |
1) Create separate IDA (Identity Domain Administrator) application for user and group creation: |
2.a) - |
4.c.) Edit the /etc/pam.d/sshd and add the pam_oracle_cloud module: |