Manualshelf

HP CIFS Client A.02.02.03 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
61626364656667686970
Example 2 Sample file for HP-UX versions B.11.00 and B.11.11
The following sample pam.conf file is for versions B.11.00 and B.11.11 of HP-UX:
================================================================
#
# PAM configuration
#
# Authentication management
#
login auth sufficient /usr/lib/security/libpam_ntlm.1
login auth required /usr/lib/security/libpam_unix.1 try_first_pass
su auth required /usr/lib/security/libpam_unix.1
dtlogin auth required /usr/lib/security/libpam_unix.1
dtaction auth required /usr/lib/security/libpam_unix.1
ftp auth required /usr/lib/security/libpam_unix.1
OTHER auth required /usr/lib/security/libpam_unix.1
#
# Account management
#
login account required /usr/lib/security/libpam_ntlm.1
login account required /usr/lib/security/libpam_unix.1
su account required /usr/lib/security/libpam_unix.1
dtlogin account required /usr/lib/security/libpam_unix.1
dtaction account required /usr/lib/security/libpam_unix.1
ftp account required /usr/lib/security/libpam_unix.1
OTHER account required /usr/lib/security/libpam_unix.1
#
# Session management
#
login session required /usr/lib/security/libpam_unix.1
dtlogin session required /usr/lib/security/libpam_unix.1
dtaction session required /usr/lib/security/libpam_unix.1
OTHER session required /usr/lib/security/libpam_unix.1
#
# Password management
#
login password sufficient /usr/lib/security/libpam_ntlm.1
login password required /usr/lib/security/libpam_unix.1
passwd password required /usr/lib/security/libpam_ntlm.1
dtlogin password required /usr/lib/security/libpam_unix.1
dtaction password required /usr/lib/security/libpam_unix.1
OTHER password required /usr/lib/security/libpam_unix.1
=================================================================
Configuring a User Map File
To configure PAM NTLM to use the user map file, add the following line to the [Global] section of
the /etc/opt/cifsclient/pam/smb.conf file:
Domain user map = /etc/opt/cifsclient/pam/domain_user.map
You can configure the name and location of the user map file. For name and location, HP
recommends the line as shown above.
The format of a domain user file entry is:
UNIXusername = [\\DOMAIN_NAME\\] DomainUserName
UNIXusername is an existing account on the HP-UX system; DomainUserName is the name of
the user that is mapped in the CIFS domain. DOMAIN_NAME is optional.
The user map file is parsed line by line. If any line begins with a # or a; then the line is ignored.
Each line should contain a single UNIX user name on the left and then a single CIFS Domain User
name on the right, separated by a tabstop or '='. If either name contains spaces then you must
enclose it in quotes.
PAM NTLM Configuration 69