Managing Systems and Workgroups: A Guide for HP-UX System Administrators
Administering a System: Managing System Security
Pluggable Authentication Modules (PAM)
Chapter 8 847
Test the password that the user
entered for the first module of the
module-type
. If it doesn’t match
the database or no password has
been entered, prompt the user for
a password.
use_psd
Request the user’s personal
identification number (Enter
PIN:) and use it to read and
decode the password from the
user’s personal security device. If
the password doesn’t match the
database, quit. This option is not
supported by DCE.
Default: If none of these options is specified, each
module behaves independently, each requesting
passwords and data in its normal fashion.
•Forpassword:
use_first_pass
Test the old and new passwords
that the user enters for the first
password module. If either fails,
do not reprompt. The
control
field should be optional.
try_first_pass
Test the old and new passwords
that the user enters for the first
password module. If the
passwords fail or no password is
been entered, prompt the user for
the old and new passwords.
use_psd
Request the user’s personal
identification number (Enter
PIN:) and use it to read and
decode the password from the