Centrify DirectControl, Centrify Identity Service, Mac Edition, Centrify DirectAudit
KB-1233: How to avoid conflicts between Red Hat OpenSSH and Centrify-Enabled OpenSSH with Red Hat Network Update
Applies to: All versions of Centrify-Enabled OpenSSH on all versions of Red Hat Linux
If both Red Hat OpenSSH and Centrify-Enabled OpenSSH are installed, will there be any conflicts when using the Red Hat Network to keep patches up-to-date? If so, how can they be avoided?
Yes, by default /etc/pam.d/sshd is owned by OpenSSH-server rpm. Centrify-Enabled OpenSSH rpm delivers the same file and declares (provides) openssh-server capability. Therefore, any upgrade for openssh-server will replace the ownership of this file. Centrify recommends to exclude openssh-server rpm from the up-to-date service configuration after installing Centrify-Enabled OpenSSH and avoid changing the ownership of /etc/pam.d/sshd.