BSM Auditing Command auditconfig -getaudit Fails With Winbind Authentication Enabled (Doc ID 2067240.1)

Last updated on AUGUST 01, 2016

Applies to:

Solaris Operating System - Version 10 3/05 HW1 to 10 1/13 U11 [Release 10.0]
Information in this document applies to any platform.

Symptoms

 BSM command auditconfig -getaudit fails with audit id being unknown and audit session id being 0

 

The /etc/nsswitch.conf file will have winbind set for passwd: and group:

passwd:     files winbind
group:      files winbind

 

The /etc/pam.conf file will have the following, or similar stack for login and other

# Authentication management
#
# login service (explicit because of pam_dial_auth)
#
login   auth requisite          pam_authtok_get.so.1
login   auth sufficient         pam_winbind.so
login   auth required           pam_dhkeys.so.1
login   auth required           pam_unix_cred.so.1
login   auth required           pam_unix_auth.so.1
login   auth required           pam_dial_auth.so.1


# Default definitions for Authentication management
# Used when service name is not explicitly mentioned for authentication
#
other   auth sufficient         pam_winbind.so.1
other   auth requisite          pam_authtok_get.so.1
other   auth required           pam_dhkeys.so.1
other   auth required           pam_unix_cred.so.1
other   auth required           pam_unix_auth.so.1

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms