Can't connect to xrdp - pam_unix(xrdp-sesman:auth): authentication failure

sanmuga07 commented 1 year ago

xrdp version

0.9.16

Detailed xrdp version, build options

[root@dev ~]$ xrdp -V
xrdp 0.9.17
  A Remote Desktop Protocol Server.
  Copyright (C) 2004-2020 Jay Sorg, Neutrino Labs, and all contributors.
  See https://github.com/neutrinolabs/xrdp for more information.

  Configure options:
      --build=x86_64-redhat-linux-gnu
      --host=x86_64-redhat-linux-gnu
      --program-prefix=
      --disable-dependency-tracking
      --prefix=/usr
      --exec-prefix=/usr
      --bindir=/usr/bin
      --sbindir=/usr/sbin
      --sysconfdir=/etc
      --datadir=/usr/share
      --includedir=/usr/include
      --libdir=/usr/lib64
      --libexecdir=/usr/libexec
      --localstatedir=/var
      --sharedstatedir=/var/lib
      --mandir=/usr/share/man
      --infodir=/usr/share/info
      --enable-fuse
      --enable-pixman
      --enable-painter
      --enable-vsock
      --with-socketdir=/run/xrdp
      build_alias=x86_64-redhat-linux-gnu
      host_alias=x86_64-redhat-linux-gnu
      CFLAGS=-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protection
      LDFLAGS=-Wl,-z,relro  -Wl,-z,now -specs=/usr/lib/rpm/redhat/redhat-hardened-ld
      PKG_CONFIG_PATH=:/usr/lib64/pkgconfig:/usr/share/pkgconfig

  Compiled with OpenSSL 1.1.1k  FIPS 25 Mar 2021

Operating system & version

RHEL 8

Installation method

dnf / apt / zypper / pkg / etc

Which backend do you use?

No response

What desktop environment do you use?

No response

Environment xrdp running on

No response

What's your client?

No response

Area(s) with issue?

No response

Steps to reproduce

Failing to connect to xrdp in our RHEL 8 machines. Getting following error message

[20230724-14:13:54] [INFO ] Socket 12: AF_INET6 connection received from ::1 port 37230
[20230724-14:13:56] [ERROR] pam_authenticate failed: Authentication failure
[20230724-14:13:56] [INFO ] AUTHFAIL: user=siini ip=::ffff:10.206.133.231 time=1690197236
[20230724-14:13:56] [ERROR] sesman_data_in: scp_process_msg failed
[20230724-14:13:56] [ERROR] sesman_main_loop: trans_check_wait_objs failed, removing trans

✔️ Expected Behavior

No response

❌ Actual Behavior

No response

Anything else?

No response

sanmuga07 commented 1 year ago

Any update?

matt335672 commented 1 year ago

This message tells us either the PAM stack is broken, or your username and password aren't working:-

[20230724-14:13:56] [ERROR] pam_authenticate failed: Authentication failure

Check the PAM stack by:-

installing the pamtester utility
Running pamtester -v xrdp-sesman USER authenticate where USER is the name of the user you are trying to log in with.

If that fails, investigate the recent contents of the /var/log/secure log file.

It's not clear whether you're running a single user machine or using a directory service to log in. If using a directory service, bear in mind Windows stores passwords using codepages and Linux uses UTF-8. Some characters (like '£') can't work on both systems.

If pamtester works OK, try entering the password you're using in the username field of the login box (with no-one looking over your shoulder). You may have a keyboard mapping or capslock issue.

neutrinolabs / xrdp