Tl-session: pam_open_session failed: 14 (Cannot make/remove an entry)

guytout · 14 June 2026 03:31

Thinlink was working fine on SuSe Leap 15. However when I moved to Suse Leap 16.1 it stopped working. I get the message “No agent server was available”

vsmagent.log

2026-06-13 16:03:33 INFO vsmagent: Got SIGTERM, signaling process to quit
2026-06-13 16:03:33 INFO vsmagent: Terminating. Have a nice day!
2026-06-13 18:00:29 INFO vsmagent: VSM Agent version 4.17.0 build 3647 started
2026-06-13 18:00:29 INFO vsmagent: My public hostname is xxxxx.net
2026-06-13 18:00:59 INFO vsmagent: Got SIGTERM, signaling process to quit
2026-06-13 18:00:59 INFO vsmagent: Terminating. Have a nice day!
2026-06-13 18:02:56 INFO vsmagent: VSM agent version 4.20.1 build 4529 started
2026-06-13 18:02:56 INFO vsmagent: My public hostname is rhodos.heron-arcturus.ts.net
2026-06-13 18:03:20 WARNING tl-session: pam_open_session failed: 14 (Cannot make/remove an entry for the specified session)
2026-06-13 18:25:31 WARNING tl-session: pam_open_session failed: 14 (Cannot make/remove an entry for the specified session)
2026-06-13 22:50:49 WARNING tl-session: pam_open_session failed: 14 (Cannot make/remove an entry for the specified session)
2026-06-13 22:59:31 WARNING tl-session: pam_open_session failed: 14 (Cannot make/remove an entry for the specified session)
2026-06-13 23:11:03 WARNING tl-session: pam_open_session failed: 14 (Cannot make/remove an entry for the specified session)

/var/log/messages

2026-06-13T22:59:31.329501-04:00 rhodos tl-session: pam_warn(thinlinc:session): function=[pam_sm_open_session] flags=0x8000 service=[thinlinc] terminal=[/dev/thinlinc] user=[gkamendje] ruser=[<unknown>] rhost=[x.x.x.x]

sestatus
SELinux status:                 enabled
SELinuxfs mount:                /sys/fs/selinux
SELinux root directory:         /etc/selinux
Loaded policy name:             targeted
Current mode:                   permissive
Mode from config file:          enforcing
Policy MLS status:              enabled
Policy deny_unknown status:     allowed
Memory protection checking:     actual (secure)
Max kernel policy version:      33

sudo getenforce
Permissive

From the logs I highly suspect this is PAM related but I have no clue what I should do next.

sysctl -a | grep audit reports nothing

/etc/pam.d/sshd and /etc/pam.d/thinlinc are both empty

There is no line containing session required pam_loginuid.so in /etc/pam.d/common-session

Topic		Replies	Views
ThinLinc login failed. (No agent server was available) ThinLinc	19	3155	19 January 2024
ThinLinc login fails (No agent server was available) ThinLinc	15	598	27 February 2025
No agent server was available ThinLinc	2	1497	22 May 2024
SELinux : denied getattr for tl-session ThinLinc	4	66	18 February 2026
ThinLinc server 4.15.0 fails on openSUSE Leap 15.5; version 4.14.0 works fine ThinLinc tlserver	12	1243	8 August 2024

Tl-session: pam_open_session failed: 14 (Cannot make/remove an entry)

Related topics