HP CIFS Client A.02.02 Administrator's Guide
PAM NTLM
PAM NTLM Configuration
Chapter 8 139
#
login password sufficient /usr/lib/security/libpam_ntlm.1
login password required /usr/lib/security/libpam_unix.1
passwd password required /usr/lib/security/libpam_ntlm.1
dtlogin password required /usr/lib/security/libpam_unix.1
dtaction password required /usr/lib/security/libpam_unix.1
OTHER password required /usr/lib/security/libpam_unix.1
Configuring a User Map File
To configure PAM NTLM to use the user map file, add the following line
to the [Global] section of the /etc/opt/cifsclient/pam/smb.conf file:
Domain user map = /etc/opt/cifsclient/pam/domain_user.map
You can configure the name and location of the user map file. For name
and location, HP recommends the line as shown above.
The format of a domain user file entry is:
UNIXusername = [\\DOMAIN_NAME\\] DomainUserName
UNIXusername is an existing account on the HP-UX system;
DomainUserName is the name of the user that is mapped in the CIFS
domain. DOMAIN_NAME is optional.
The user map file is parsed line by line. If any line begins with a # or a;
then the line is ignored. Each line should contain a single UNIX user
name on the left and then a single CIFS Domain User name on the right,
separated by a tabstop or '='. If either name contains spaces then you
must enclose it in quotes.
Using NIS Distribution of the User Map File
The user map file is enabled to be distributed via NIS in a similar
manner to the distribution of /etc/passwd to NIS clients.
To use this feature:
1. Convert the master user map file into an NIS map file named
domainusermap.byname on the NIS master server.