HP-UX Reference (11i v2 03/08) - 4 File Formats (vol 8)
p
pam.conf(4) pam.conf(4)
Notes
If an error is found in an entry due to invalid service_name , module_type ,orcontrol_flag, then the entry
is ignored. If there are no valid entries for the given module_type , the PAM framework returns an error
to the application.
EXAMPLES
The following is a sample
pam.conf configuration file. Lines that begin with the
# symbol are treated
as comments, and therefore ignored.
#
# PAM configuration
#
# Authentication management for login service is stacked.
# Both UNIX and inhouse authentication functions are invoked.
login auth required /usr/lib/security/$ISA/libpam_unix.so.1
login auth required /usr/lib/security/$ISA/libpam_inhouse.so.1 try_first_pass
dtlogin auth required /usr/lib/security/$ISA/libpam_unix.so.1
dtlogin auth required /usr/lib/security/$ISA/libpam_inhouse.so.1 try_first_pass
#
# Other services use UNIX authentication
other auth required /usr/lib/security/$ISA/libpam_unix.so.1
#
# Account management for login service is stacked.
# UNIX account management is required; inhouse account management is optional
login account required /usr/lib/security/$ISA/libpam_unix.so.1
login account optional /usr/lib/security/$ISA/libpam_inhouse.so.1
dtlogin account required /usr/lib/security/$ISA/libpam_unix.so.1
dtlogin account optional /usr/lib/security/$ISA/libpam_inhouse.so.1
other account required /usr/lib/security/$ISA/libpam_unix.so.1
#
# Session management
other session required /usr/lib/security/$ISA/libpam_unix.so.1
#
# Password management
other password required /usr/lib/security/$ISA/libpam_unix.so.1
The following is a sample
pam.conf configuration which uses the libpam_updbe.so.1
module to
configure a user. Lines that begin with the
# symbol are treated as comments, and therefore ignored.
#
# PAM configuration
#
# Authentication management for login service is stacked.
# Both UNIX and inhouse authentication functions are invoked.
login auth required /usr/lib/security/$ISA/libpam_updbe.so.1
login auth required /usr/lib/security/$ISA/libpam_unix.so.1
login auth required /usr/lib/security/$ISA/libpam_inhouse.so.1 try_first_pass
dtlogin auth required /usr/lib/security/$ISA/libpam_updbe.so.1
dtlogin auth required /usr/lib/security/$ISA/libpam_unix.so.1
dtlogin auth required /usr/lib/security/$ISA/libpam_inhouse.so.1 try_first_pass
#
# Other services use UNIX authentication
other auth required /usr/lib/security/$ISA/pam_unix.so.1
#
# Account management for login service is stacked.
# UNIX account management is required; inhouse account management is optional
login account required /usr/lib/security/$ISA/libpam_unix.so.1
login account optional /usr/lib/security/$ISA/libpam_inhouse.so.1
dtlogin account required /usr/lib/security/$ISA/libpam_unix.so.1
dtlogin account optional /usr/lib/security/$ISA/libpam_inhouse.so.1
other account required /usr/lib/security/$ISA/libpam_unix.so.1
#
# Session management
other session required /usr/lib/security/$ISA/libpam_unix.so.1
HP-UX 11i Version 2: August 2003 − 3 − Hewlett-Packard Company Section 4−−225