PAM_USERDB - Online Linux Manual PageSection : 8
Updated : 09/03/2021
Source : Linux-PAM Manual
Note : Linux−PAM Manual

NAMEpam_userdb − PAM module to authenticate against a db database

SYNOPSISpam_userdb​.so db=/path/database [debug] [crypt=[crypt|none]] [icase] [dump] [try_first_pass] [use_first_pass] [unknown_ok] [key_only]

DESCRIPTIONThe pam_userdb module is used to verify a username/password pair against values stored in a Berkeley DB database​. The database is indexed by the username, and the data fields corresponding to the username keys are the passwords​.

OPTIONScrypt=[crypt|none] Indicates whether encrypted or plaintext passwords are stored in the database​. If it is crypt, passwords should be stored in the database in crypt(3) form​. If none is selected, passwords should be stored in the database as plaintext​. db=/path/database Use the /path/database database for performing lookup​. There is no default; the module will return PAM_IGNORE if no database is provided​. Note that the path to the database file should be specified without the ​.db suffix​. debug Print debug information​. Note that password hashes, both from db and computed, will be printed to syslog​. dump Dump all the entries in the database to the log​. Don't do this by default! icase Make the password verification to be case insensitive (ie when working with registration numbers and such)​. Only works with plaintext password storage​. try_first_pass Use the authentication token previously obtained by another module that did the conversation with the application​. If this token can not be obtained then the module will try to converse​. This option can be used for stacking different modules that need to deal with the authentication tokens​. use_first_pass Use the authentication token previously obtained by another module that did the conversation with the application​. If this token can not be obtained then the module will fail​. This option can be used for stacking different modules that need to deal with the authentication tokens​. unknown_ok Do not return error when checking for a user that is not in the database​. This can be used to stack more than one pam_userdb module that will check a username/password pair in more than a database​. key_only The username and password are concatenated together in the database hash as 'username−password' with a random value​. if the concatenation of the username and password with a dash in the middle returns any result, the user is valid​. this is useful in cases where the username may not be unique but the username and password pair are​.

MODULE TYPES PROVIDEDThe auth and account module types are provided​.

RETURN VALUESPAM_AUTH_ERR Authentication failure​. PAM_AUTHTOK_RECOVERY_ERR Authentication information cannot be recovered​. PAM_BUF_ERR Memory buffer error​. PAM_CONV_ERR Conversation failure​. PAM_SERVICE_ERR Error in service module​. PAM_SUCCESS Success​. PAM_USER_UNKNOWN User not known to the underlying authentication module​.

EXAMPLESauth sufficient pam_userdb​.so icase db=/etc/dbtest

SEE ALSOcrypt(3), pam.conf(5), pam.d(5), pam(8)

AUTHORpam_userdb was written by Cristian Gafton >gafton@redhat​.com<​.
0
Johanes Gumabo
Data Size   :   14,064 byte
man-pam_userdb.8Build   :   2024-12-05, 20:55   :  
Visitor Screen   :   x
Visitor Counter ( page / site )   :   2 / 182,791
Visitor ID   :     :  
Visitor IP   :   3.17.181.112   :  
Visitor Provider   :   AMAZON-02   :  
Provider Position ( lat x lon )   :   39.962500 x -83.006100   :   x
Provider Accuracy Radius ( km )   :   1000   :  
Provider City   :   Columbus   :  
Provider Province   :   Ohio ,   :   ,
Provider Country   :   United States   :  
Provider Continent   :   North America   :  
Visitor Recorder   :   Version   :  
Visitor Recorder   :   Library   :  
Online Linux Manual Page   :   Version   :   Online Linux Manual Page - Fedora.40 - march=x86-64 - mtune=generic - 24.12.05
Online Linux Manual Page   :   Library   :   lib_c - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Online Linux Manual Page   :   Library   :   lib_m - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Data Base   :   Version   :   Online Linux Manual Page Database - 24.04.13 - march=x86-64 - mtune=generic - fedora-38
Data Base   :   Library   :   lib_c - 23.02.07 - march=x86-64 - mtune=generic - fedora.36

Very long time ago, I have the best tutor, Wenzel Svojanovsky . If someone knows the email address of Wenzel Svojanovsky , please send an email to johanes_gumabo@yahoo.co.id .
If error, please print screen and send to johanes_gumabo@yahoo.co.id
Under development. Support me via PayPal.