Fall back to passwd file from radius is not working.

[jmaskey]

Hi,
I am trying to configure a setting where the first authentication method is Radius, if it fails, then use the local passwd file to authenticate. I have my nsswitch.conf file configured as follows and I also have a valid RADIUS server configured:

passwd: ato files
group: files
shadow: ato files
gshadow: files

With this setting, I am not able to authenticate the local users that is on the /etc/passwd file.
However, if the settings are reversed as 'files ato', I am able to authenticate both local and radius users. Do you know if this is a known bug or am I missing a configuration somewhere?

Thank you!

[donapieppo]

If you want radius and local users why are you using libnss-ato in the first place?

Can you elaborate on what you are trying to accomplish with the passwd: ato files configuration, and why
passwd: files ato is not good for you?

[cs10249mitt]

Is it possible to limit libnss ato functionality to skip names like "test_name.test_group". This creates an issue that command like "chown test_user.test_group a" to treat "test_user.test_group" as a username where chown would want "test_user" as username and "test_group" as the usergroup.
Same is the issue with "test_user.test_group