Manualshelf

LDAP-UX Client Services B.05.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX LDAP-UX Integration Software
351352353354355356357358359360
C Sample /etc/pam.ldap.trusted file configured by setup
This appendix provides the sample PAM configuration file, /etc/pam.ldap.trusted generated
by setup and used as the /etc/pam.conf file to support the coexistence of LDAP-UX and
Trusted Mode. This /etc/pam.ldap.trusted file must be used as the /etc/pam.conf file
if your directory server is the HP-UX Directory Server or Redhat Directory Server and your
LDAP client is in the Trusted Mode. If your system is in a Standard Mode, you still need to use
the/etc/pam.ldap file as the /etc/pam.conf file.
The following is a sample PAM configuration file, /etc/pam.ldap.trusted, used for the
HP-UX 11i v2 system:
#
# PAM configuration
#
# This pam.conf file is intended as an example only.
#
#
################################################################
# This configuration file has only been modified for default #
# services. Other services can be added or modified as needed #
# or desired. If a service is not listed, it will use the #
# OTHER classification. #
# #
# the format for a entry is #
# <service> <module_type> <control> <module path> <options> #
# #
# see pam.conf(4) for more details #
# #
# NOTE: This pam.conf file is recommended only if you convert #
# your system to a Trusted System. If your system is in the #
# Standard Mode, use the pam.ldap file as an example. #
# #
# NOTE: If the path to a library is not absolute, it is assumed#
# to be relative to the directory /usr/lib/security/$ISA. #
# The "$ISA (i.e Instruction Set Architecture) token is #
# replaced by the PAM engine (libpam) with "hpux64" for IA #
# 64-bit modules, or with "hpux32" for IA 32-bit modules, or #
# with "pa20_64" for PA 64-bit modules, or with NULL for PA #
# 32-bit modules. #
# For PA applications, library name ending with "so.1" is a #
# symbolic link that points to the corresponding PA (32 or 64 #
# bit) backend library. #
################################################################
#
# Authentication management
#
login auth required libpam_hpsec.so.1
login auth sufficient libpam_ldap.so.1
login auth required libpam_unix.so.1 try_first_pass
su auth required libpam_hpsec.so.1
su auth sufficient libpam_ldap.so.1
su auth required libpam_unix.so.1 try_first_pass
dtlogin auth required libpam_hpsec.so.1
dtlogin auth sufficient libpam_ldap.so.1
dtlogin auth required libpam_unix.so.1 try_first_pass
dtaction auth required libpam_hpsec.so.1
dtaction auth sufficient libpam_ldap.so.1
dtaction auth required libpam_unix.so.1 try_first_pass
ftp auth required libpam_hpsec.so.1
ftp auth sufficient libpam_ldap.so.1
ftp auth required libpam_unix.so.1 try_first_pass
353