Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Using Fedora
Reload this Page SE Linux Blocks Login of New User Account
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Using Fedora General support for current versions. Ask questions about Fedora and it's software that do not belong in any other forum.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 6th May 2012, 10:07 PM
teancum144 Online
Registered User
  
Join Date: Dec 2009
Location: Camas, WA USA
Posts: 57
linuxchrome
SE Linux Blocks Login of New User Account
I created a new user via the useradd command. When I try to log in to that account, SELinux blocks the login. From the audit.log, here are some errors that could be related:

type=USER_LOGIN msg=audit(1336332077.728:477): pid=0 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 msg='uid=1001 exe="/usr/libexec/gdm-session-worker" hostname=? addr=? terminal=/dev/tty3 res=failed'
type=USER_LOGIN msg=audit(1336332097.295:479): pid=0 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 msg='uid=1001 exe="/usr/libexec/gdm-session-worker" hostname=? addr=? terminal=/dev/tty3 res=failed'
type=USER_LOGIN msg=audit(1336335890.933:99): pid=0 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 msg='uid=1001 exe="/usr/libexec/gdm-session-worker" hostname=? addr=? terminal=/dev/tty2 res=failed'
type=USER_LOGIN msg=audit(1336335906.109:101): pid=0 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 msg='uid=1001 exe="/usr/libexec/gdm-session-worker" hostname=? addr=? terminal=/dev/tty2 res=failed'
type=USER_CHAUTHTOK msg=audit(1336335990.816:118): pid=0 uid=0 auid=1000 ses=5 subj=unconfined_u:unconfined_rasswd_t:s0-s0:c0.c1023 msg='op=change password id=1001 exe="/usr/bin/passwd" hostname=? addr=? terminal=pts/0 res=failed'
type=USER_CHAUTHTOK msg=audit(1336336016.307:120): pid=0 uid=0 auid=1000 ses=5 subj=unconfined_u:unconfined_rasswd_t:s0-s0:c0.c1023 msg='op=change password id=1001 exe="/usr/bin/passwd" hostname=? addr=? terminal=pts/0 res=failed'
Reply With Quote
  #2  
Old 7th May 2012, 04:09 PM
domg472 Offline
SELinux Contributor
  
Join Date: May 2008
Posts: 621
linuxfirefox
Re: SE Linux Blocks Login of New User Account
Those audit messages arent SELinux related.

The SELinux related audit messages are "type=AVC" usually
__________________
Come join us on #fedora-selinux on irc.freenode.org
http://docs.fedoraproject.org/selinu...ide/f10/en-US/
Reply With Quote
  #3  
Old 7th May 2012, 06:15 PM
stickster's Avatar
stickster Offline
Community Manager
  
Join Date: Aug 2005
Posts: 11
linuxfirefox
Re: SE Linux Blocks Login of New User Account
Make sure that the user's home directory are owned by the correct user and group IDs. Also make sure the SELinux contexts are correct. For instance, if the new user is UID 1001 and default group GID 1001, with name "rjones" you should be able to do this (as root):

chown -R 1001:1001 /home/rjones
restorecon -r -v /home/rjones
__________________
Paul W. Frields - http://fedoraproject.org/wiki/User:Pfrields
IRC: stickster / FreeNode @ #fedora-docs, #fedora-devel, #fredlug
Get involved in Fedora: http://join.fedoraproject.org/
Reply With Quote
  #4  
Old 9th May 2012, 05:58 PM
teancum144 Online
Registered User
  
Join Date: Dec 2009
Location: Camas, WA USA
Posts: 57
windows_7chrome
Re: SE Linux Blocks Login of New User Account
I have two user accounts - lets call them user1 and user2. Here is how I'm trying to set them up:

User1 home directory, subdirectory, and files: Owner: User1 Group: User1
User2 home directory, subdirectory, and files: Owner: User2 Group: User1

Useradd -g User1 User2

Prior to initiating this command, I changed the login umask to 007.
Reply With Quote
Reply

Tags
account, blocks, linux, login, user

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] One user cannot login to his account via GUI (Fedora Core 10) PastulioLive EOL (End Of Life) Versions 4 14th February 2012 03:11 PM
administrative login in the user account? kernel_klink Security and Privacy 2 26th September 2009 04:00 AM
User account missing from gui login skri11a Using Fedora 1 28th January 2009 09:23 PM
local user account login hyjalsoul Servers & Networking 2 18th July 2007 03:06 AM


Current GMT-time: 01:59 (Sunday, 26-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat