Are users that are added to NS expected to be listed in the passwd file? I see that one of the users (myself) wasn’t it. When logging in with SSH, the login succeeds but causes pam authentication errors to be logged in /var/log/secure. Users that have log watchers such as swatch (myself) will receive false positives because the user isn’t in the passwd file.
To work around this, I added the user (myself) manually and reset the password using
sudo passwd -f <username>. The ‘-f’ option is used to force the password even though it may be a dictionary password.
When I added the myself to the passwd file, I ensured I used the proper user and group id’s that NS used when the user was created by using the