missing flags in audit_control prevent login and/or admin authorization
| Originator: | vch | ||
| Number: | rdar://11722359 | Date Originated: | 21-Jun-2012 03:18 PM |
| Status: | Open | Resolved: | |
| Product: | Mac OS X | Product Version: | 10.7+ |
| Classification: | UI/Usability | Reproducible: | Yes |
Summary: excluding undocumented flags in /etc/security/audit_control prevent users from logging in or authorizing administrative actions via gui dialog boxes on 10.7+. Steps to Reproduce: remove the following flags from /etc/security/audit_control superuser-set-sflags-mask:has_authenticated,has_console_access superuser-clear-sflags-mask:has_authenticated,has_console_access member-set-sflags-mask: member-clear-sflags-mask:has_authenticated Expected Results: no change Actual Results: users are unable to authorize administrative actions via gui dialog boxes, but may still use sudo. some users are also unable to login. Regression: 10.7, 10.8
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!