crontab没有正常执行一次_failed to open pam security session (permission de-优快云博客

本文链接：https://blog.youkuaiyun.com/qq_31555951/article/details/119807019

博客讲述了在Linux系统中遇到crond服务因PAM权限问题导致无法正常执行任务的日志分析过程。通过检查错误日志，发现在/etc/pam.d/crond配置文件中，将所有required修改为sufficient解决了问题。尽管修复了问题，但具体原因不明。重启crond服务后，服务恢复正常运行。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

异常情况

磁盘告警，发现crontab没有正常执行一次，查询异常日志如下：

[root@gtcq-gt-resource2-07 shell_script]# tailf /var/log/cron
Feb  3 09:35:01 gtcq-gt-resource2-07 crond[86726]: (root) FAILED to open PAM security session (Permission denied)
Feb  3 09:35:05 gtcq-gt-resource2-07 crontab[86526]: (root) REPLACE (root)
Feb  3 09:35:05 gtcq-gt-resource2-07 crontab[86526]: (root) END EDIT (root)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[1143]: (root) RELOAD (/var/spool/cron/root)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[87602]: (root) PAM ERROR (Permission denied)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[87603]: (root) PAM ERROR (Permission denied)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[87602]: (root) FAILED to open PAM security session (Permission denied)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[87604]: (root) PAM ERROR (Permission denied)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[87603]: (root) FAILED to open PAM security session (Permission denied)
Feb  3 09:36:01 gtcq-gt-resource2-07 crond[87604]: (root) FAILED to open PAM security session (Permission denied)

异常处理

通过错误日志，查看/etc/pam.d/crond
把所有required改成sufficient就可以了，但具体原因不明确…

[root@gtcq-gt-resource2-07 shell_script]# more   /etc/pam.d/crond 
#
# The PAM configuration file for the cron daemon
#
#
# No PAM authentication called, auth modules not needed
account    sufficient   pam_access.so
account    include    system-auth
session    sufficient   pam_loginuid.so
session    include    system-auth
auth       include    system-auth
[root@gtcq-gt-resource2-07 shell_script]#

重启服务命令：[root@centos6 /]# service crond restart