Managing Systems and Workgroups: A Guide for HP-UX System Administrators

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU

841

842

843

844

845

846

847

848

849

850

Administering a System: Managing System Security

Pluggable Authentication Modules (PAM)

Chapter 8846

sufficient If the test succeeds, then no further

tests are performed.

module-path

is a path name to a shared library object that

implements the service. If the path is not absolute, it is

assumed to be relative to /usr/lib/security, where

the HP-supplied modules reside. The

module-path

for

the standard HP-UX module is

/usr/lib/security/libpam_unix.1.

If you are using DCE authentication, the

module-path

for all such entries is

/usr/lib/security/libpam_dce.1.

If you are implementing individual user controls for a

service-name

and

module-type

, the ﬁrst entry for

that

service-name

module-type

should have

module-path

/usr/lib/security/libpam_updbe.1

and

control

keyword required. See pam_updbe (5).

options

is zero or more options recognized by the module. The

options supported by the modules are documented in

their manpages. The options for the standard HP-UX

module libpam_unix.1 and the DCE module

libpam_dce.1 are summarized as follows:

• For all values of

module-type

debug

Write debugging information to

the system log at the LOG_DEBUG

level.

nowarn

Turn off warning messages.

•Forauth:

use_first_pass

Test the password that the user

entered for the ﬁrst module of the

module-type

. If it doesn’t match

the database or no password has

been entered, quit.

try_first_pass