Suppress weird "authentication failure" log while using pam_ldap with ssh on CentOS 7
Solution 1:
According Red Hat KB article 881103
This is expected behaviour from
pam_unix
and the message is normal and harmless.There is no configuration option within
pam_unix
to stop logging those messages.The default pam configuration tries to authenticate a user using
pam_unix
first, then usingpam_ldap.so
module if authentication withpam_unix
is failed.
The article will also show a possible configuration change if you like to remove these default failures errors from logging.