pam_pkcs11(8) System Administration tools pam_pkcs11(8)NAME
pam_pkcs11 - PAM Authentication Module for PKCS#11 token libraries
SYNOPSIS
pam_pkcs11.so [debug] [configfile=<configfile>]
DESCRIPTION
This Linux-PAM login module allows a X.509 certificate based user login. The certificate and its dedicated private key are thereby accessed
by means of an appropriate PKCS #11 module. For the verification of the users' certificates, locally stored CA certificates as well as
either online or locally accessible CRLs are used.
CONFIGURATION
The program that needs a PAM service should be configured in /etc/pam.conf or /etc/pam.d/<servicename>.
pam_pkcs11 can be used in the <auth> PAM chain.
For details on how to configure PAM services, see the PAM documentation for your system. This manual does not cover PAM configuration
details. The existing PAM service definitions for other applications on your system is also a good source for examples on how to configure
a PAM service.
FILES
/etc/pam_pkcs11/pam_pkcs11.conf
/usr/lib/pam_pkcs11/*_mapper.so
AUTHOR
Original PAM-pkcs11 was written by Mario Strasser <mast@gmx.net>. Newer versions are from Juan Antonio Martinez <jonsito@teleline.es>.
REPORTING BUGS
Report bugs ideas, comments, bug-fixes and so to: Juan Antonio Martinez <jonsito@teleline.es>
SEE ALSO pam(8), pam_pkcs11.conf(5), PAM Systems Administrator Guide, README.mappers file, PAM-PKCS#11 User Manual.
Mario Strasser 15-Feb-2005 pam_pkcs11(8)
Check Out this Related Man Page
pam_pkcs11(8) System Administration tools pam_pkcs11(8)NAME
pam_pkcs11 - PAM Authentication Module for PKCS#11 token libraries
SYNOPSIS
pam_pkcs11.so [debug] [configfile=<configfile>]
DESCRIPTION
This Linux-PAM login module allows a X.509 certificate based user login. The certificate and its dedicated private key are thereby accessed
by means of an appropriate PKCS #11 module. For the verification of the users' certificates, locally stored CA certificates as well as
either online or locally accessible CRLs are used.
CONFIGURATION
The program that needs a PAM service should be configured in /etc/pam.conf or /etc/pam.d/<servicename>.
pam_pkcs11 can be used in the <auth> PAM chain.
For details on how to configure PAM services, see the PAM documentation for your system. This manual does not cover PAM configuration
details. The existing PAM service definitions for other applications on your system is also a good source for examples on how to configure
a PAM service.
FILES
/etc/pam_pkcs11/pam_pkcs11.conf
/usr/lib/pam_pkcs11/*_mapper.so
AUTHOR
Original PAM-pkcs11 was written by Mario Strasser <mast@gmx.net>. Newer versions are from Juan Antonio Martinez <jonsito@teleline.es>.
REPORTING BUGS
Report bugs ideas, comments, bug-fixes and so to: Juan Antonio Martinez <jonsito@teleline.es>
SEE ALSO pam(8), pam_pkcs11.conf(5), PAM Systems Administrator Guide, README.mappers file, PAM-PKCS#11 User Manual.
Mario Strasser 15-Feb-2005 pam_pkcs11(8)
Hello,
I'm now analysing the working of PAM.
PAM works with config-files, that you can find under the directory /etc/pam.d.
One of those config.-files is the file: login.conf.
------------------------------------------------------------------------------------------------------
#... (0 Replies)
Hello!
I have seen similar questions asked about how to become a system administrator. Most would say experience is more important than just getting a certificate and even a degree. However, I haven't found a good information how to build experience from a newbie to entry-level systems... (8 Replies)
If I use to PAM to validate a vsftp user using a remote service to do the validation and the user does not exist on the system locally, then what becomes the home directory for the user logging in via vsftp?
Assuming that chroot_user_list is enable to limit all users to their home directory. (0 Replies)
Hi
We have these specific requirements for a bunch of servers we have and cannot seem to get pam to behave in this way. We would like:
PAM locks accounts if pam tally reaches 10.
PAM unlocks the account after 30mins from locking it, and resets the pam_tally.
The key is that we don't... (0 Replies)
Hello all,
I recently updated PAM policy files (pam_authz.policy) on HP-UX Servers with AD groups involving allowing and denying the certain groups..
Could anyone tell me what is the equivalent mechanism in SLES(Linux)? Is it possible to allow/deny AD group access with the SLES LDAP... (0 Replies)