This article applies to BoKS Manager 7.0.0.
Multiple problems have been found in the BoKS PAM module for X-login sessions:
Resolution / Workaround
To resolve this issue, apply hotfix HFBM-0145, available for download from the HelpSystems Community Portal.
The BoKS PAM module has been updated to fix the above problems for X-login.
There is a known bug in the Linux version of XDM display manager that makes it core dump even with this hotfix applied. The bug is in a PAM callback function in the XDM display manager and a workaround is to define HIDE_LOGIN_MESS=on in $BOKS_etc/ENV on each BoKS Server Agent (X Windows Display Server). The effect of this is that the end-user will not be informed about last login, password expiration date etc. at login. This problem does not apply to GDM/Gnome display manager.
The XDM display manager should not be used if support for remote X-login is enabled on a BoKS Server Agent since the XDM display manager does not include the X-display number in the call arguments when calling PAM, thus it will result in the same problem as mentioned in paragraph 2 above.
Still have questions? We can help. Submit a case to Technical Support.