PAM sudo su transparent login randomly failing

Document ID : KB000098393
Last Modified Date : 13/07/2018
Show Technical Document Details
Issue:
Randomly "sudo su" transparent login fails. Connecting into the server using a managed account the "sudo su" transparent access works and randomly right after it will not, on the exact same server with the exact same account. This is happening using the CA PAM SSH and Putty.

Steps on how to reproduce it:
a.    access remote Linux box via PuTTy service
b.    navigate to /var/db/sudo/lectured directory
c.    delete lecture file for specific user (pamUser in my case)
d.    open another instance (step a) and type "sudo su" command
e.    observe that you've been prompted for password.
Environment:
PAM 3.2
 
Resolution:
This issue has been worked under defect DE366639 and hahs been resolved by hot fix CAPAM_3.2.0.03.p.bin
Download the fix here: ftp://Accessmgtuser:xsw23evh@ftp.ca.com/CAPrivilegedAccessManagement/PAM/patches/CAPAM_3.2.0.03.p.zip