Sun Enterprise Authentication Mechanism 1.0.1 Issues

The known issues with SEAM 1.0 are listed in the following section.

Sun Enterprise Authentication Mechanism Does Not Accept Extended Characters in Passwords [4250805]

Password fields in Sun Enterprise Authentication Mechanism (SEAM) do not accept Extended (8-bit) characters. SEAM documentation does not document this restriction.

Must Upgrade SEAM on Solaris 8

When upgrading to the Solaris 8 operating environment, you must also upgrade SEAM to the 1.0.1 version contained in the Solaris 8 Admin Pack. Otherwise, you will not be able to use Kerberos V5 security with NFS. This could cause NFS sharing to fail on the server, which would prevent clients from gaining access to filesystems shared with strong security. A machine sharing or using Kerberos V5 security for NFS should not upgrade to Solaris 8 without a simultaneous upgrade to the Solaris 8 Admin Pack.

Kerberos V5 Not Working with NFS [4278857]

After installation, several lines in the /etc/nfssec.conf file are left commented, thus preventing use of Kerberos V5 with NFS.

Workaround: Remove comment indicator (#) at the beginning of the following lines in the /etc/nfssec.conf file:

#krb5	390003	kerberos_v5	default - 	#RPCSEC_GSS

#krb5i	390004	kerberos_v5	default integrity	#RPCSEC_GSS

/etc/pam.conf File Installed Incorrectly [4278862]

After installation, several lines in the /etc/pam.conf file are left commented, which prevents Kerberos security from being applied to the applications indicated in the commented lines.

Workaround: Remove comment indicator (#) at the beginning of all lines in /etc/pam.conf that begin with SEAM.