# cat /etc/pam. #d/susemanager #%PAM-1.0 auth include common-auth account include common-account password include common-password session include common-session # cat /etc/rhn/rhn.conf pam_auth_service = susemanager . d/susemanager #%PAM-1.0 auth include common-auth account include common-password password

/var/log/messages 2022-02-07T14:22:27.027172+00:00 systemhostname sudo: pam_access(sudo:account): access denied for user ' tomcat' from " 2022-02-07T14:22:27.030401+00:00 systemhostname sudo: pam_sss(sudo:account): access denied for user tomcat: 10(用户不知道底层认证模块)2022-02-07T14:22:27.030660+00:00 systemhostname sudo: tomcat: PAM account management error: Permission denied;PWD = / usr / share / tomcat;用户=根;COMMAND=/usr/bin/rhn-bootstrap——hostname=systemhostname——ssl-cert=/srv/www/htdocs/pub/rhn-org-trusted-ssl-cert-1.0-1.noarch. sh . shrpm /var/log/rhn/rhn_web_ui.log 2022-02-07 14:19:23,454[美国精神——nio 0:0:0:0:0:0:0:1 - 8009 - exec - 20)所遇到的错误错误com.redhat.rhn.manager.satellite.SystemCommandExecutor——执行(args = (/ usr / bin / sudo, /usr/bin/rhn-bootstrap,主机名= systemhostname——ssl-cert = /电脑/ www /根/ pub /神经-组织-信任- ssl - cert - 1.0 - 1. - noarch.rpm]) 2022-02-07 14:19:23,454[美国精神——nio 0:0:0:0:0:0:0:1 - 8009 - exec - 20)错误com.redhat.rhn.manager.satellite.SystemCommandExecutor——错误消息的过程:sudo:PAM帐户管理错误:Permission denied sudo: a password is required

在SUSE Manager Server上运行' mgr-bootstrap '可以正确更新引导脚本。

在'中添加以下内容/etc/security/access.conf，授予“tomcat”用户访问权限:

+: tomcat:所有

还可能需要它来创建sudoers dropin文件。将以下内容添加到'/etc/sudoers.d/01_tomcat｀

tomcat ALL = NOPASSWD: /usr/bin/rhn-bootstrap

+:user00,user01,user02:ALL +:user03:LOCAL -:ALL:ALL

• 第一行以“+”开头的所有用户都允许进入
• 允许用户“user03”进入，但只能从本地主机进入
• 不允许使用所有其他用户