Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2070
Views
0
Helpful
2
Replies

Pam_duo.conf - permission denied by Gnome ScreenSaver

Peter_Tran
Level 1
Level 1

‎02-01-2020 04:09 AM

I’m trying to use DUO in my Redhat 6.8 - Gnome GUI. When I lock Gnome and log in back, it doesn’t use pam_duo.so at all (since there’s no log saying success or failed, neither connection to DUO was made). I found this in log /var/log/message:

gnome-screensaver-dialog: Couldn’t open /etc/duo/pam_duo.conf: Permission denied

Don’t know why this one has permission denied, while SSH/sudo work perfectly. pam_duo.conf has mod 400 since installation.

What can I do ?

Labels:
0 Helpful
2 Replies 2

DuoKristina
Cisco Employee
Cisco Employee

‎02-04-2020 12:55 PM

Our previous testing KDM and GDM in RHEL 6 showed it appears to just simply not allow interactive prompting on the login and screen lock pages. We did test with LightDM on RHEL 6 and successfully saw the interactive login prompt. It also works with GDM on RHEL 7+.

Simply changing permissions on the pam_duo.conf won’t help, as Duo Unix expects the conf file to be secured (as does SSH), and will report issues if you were to open it up to group read.

Duo, not DUO.
0 Helpful

Dale3
Level 1
Level 1

‎06-30-2023 09:02 AM

This doesn’t work on Ubuntu 22.04 either. Anyone have an idea on how to fix it?

mate-screensaver-dialog[PID]: Couldn’t open /etc/duo/pam_duo.conf: Permission denied

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents