PAM Kusimbiswa - SME Networks

General index yeakateedzana: Computer Networks yeSMEs: Sumo

Mhoro shamwari neshamwari!

Nenyaya ino isu tinoda kupa Ongororo kumusoro wenyaya weKusimbiswa kuburikidza PAM. Isu tajaira kushandisa yedu Workstation neLinux / UNIX inoshanda sisitimu zuva nezuva uye pazviitiko zvishoma isu tinomira kuti tiongorore maitiro ekuvimbisa anoitika nguva dzese patinotanga musangano. Tinoziva here nezvekuvapo kwezvakachengetwa / etc / passwduye / etc / mumvuri izvo zvinoumba dhatabhesi hombe yeAuthentication Credentials evashandisi vemuno. Isu tinovimba kuti mushure mekuverenga iyi positi iwe unenge uine- zvirinani- yakajeka pfungwa yekuti PAM inoshanda sei.

Kusimbiswa

Kusimbiswa - kwezvinoshanda zvinangwa - ndiyo nzira mushandisi inosimbiswa kupokana nesystem. Iyo yekusimbisa maitiro inoda kuvepo kweiyo seti yekuzivikanwa uye magwaro - zita rekushandisa uye password - izvo zvinoenzaniswa neruzivo rwakachengetwa mudhatabhesi. Kana humbowo hwakapihwa hwakafanana nehwo hwakachengetwa uye account yemushandisi iri kushanda, mushandisi anonzi akapindwa mukati. zvechokwadi kubudirira kana kubudirira kupasa iyo chokwadi.

Kana mushandisi angosimbiswa, iwo ruzivo rwunopfuudzwa kune iyo kupinda kwevhisi sevhisi kuona izvo izvo mushandisi anogona kuita muhurongwa uye izvo zviwanikwa zvavanazvo chiremera kuti uwane iwo.

Ruzivo rwekuongorora mushandisi runogona kuchengetwa mudatabhesi dzemuno pachirongwa, kana iyo system yemuno inogona kureva kune dhatabhesi iriko pane iri kure system, senge LDAP, Kerberos, NIS dhatabhesi, zvichingodaro.

Mazhinji masisitimu anoshanda eUNIX® / Linux ane maturusi anodikanwa ekumisikidza sevhisi / sevhisi yekusimbisa sevhisi yemhando dzakajairika dzemazita evashandisi. Mimwe yeaya masisitimu ane akazara graphical zvishandiso senge Red Hat / CentOS, SUSE / openSUSE, uye kumwe kugovera.

PAM: Inogoneka Yekusimbisa Module

ari Ma module akaisirwa Yekusimbisa Isu tinoshandisa iwo mazuva ese patinopinda paDesktop yedu neLinux / UNIX-yakavakirwa mashandiro esisitimu, uye pane dzimwe nguva zhinji patinowana masevhisi emuno kana ari kure ane chaiyo yemuno PAM module yakaiswa yechokwadi pamusoro pebasa iri.

Pfungwa inoshanda yekuti maPAMMulemo akaiswa sei anogona kuwanikwa kuburikidza nehurongwa hwehurumende yechokwadi en timu ine Debian uye en imwe ine CentOS izvo zvatinokudziridza zvinotevera.

Debian

Zvinyorwa

Kana isu tikamisa iyo package libpam-doc tichava nemagwaro akanaka kwazvo ari mudhairekitori / usr / share / doc / libpam-doc / html.

midzi @ linuxbox: ~ # aptitude yekuisa libpam-doc
midzi @ linuxbox: ~ # ls -l / usr / share / doc / libpam-doc /

Iko zvakare kune zvimwe zvinyorwa paPAM mune madhairekitori:

midzi @ linuxbox: ~ # ls -l / usr / share / doc / | grep pam
drwxr-xr-x 2 mudzi mudzi 4096 Apr 5 21:11 libpam0g drwxr-xr-x 4 mudzi mudzi 4096 Apr 7 16:31 libpam-doc drwxr-xr-x 2 mudzi mudzi 4096 Apr 5 21:30 libpam-gnome- keyring drwxr-xr-x 3 mudzi midzi 4096 Kubvumbi 5 21:11 libpam-modules drwxr-xr-x 2 mudzi mudzi 4096 Kubvumbi 5 21:11 libpam-modules-bin-drwxr-xr-x 2 mudzi mudzi 4096 Apr 5 21: 11 libpam-runtime drwxr-xr-x 2 mudzi midzi 4096 Kubvumbi 5 21:26 libpam-systemd drwxr-xr-x 3 mudzi mudzi 4096 Apr 5 21:31 python-pam

Tinotenda kuti tisati taenda kunze kunotsvaga zvinyorwa paInternet, tinofanira kuongorora iyo yakatove yakaiswa kana iyo yatinokwanisa kuisa zvakananga kubva muzvirongwa zvepurogiramu zviripo kune chimwe chinhu uye pane dzimwe nguva tinozvinyora ku hard drive yedu. Muenzaniso weizvi ndizvo zvinotevera:

midzi @ linuxbox: ~ # zvishoma / usr / share / doc / libpam-gnome-keyring / README
gnome-keyring chirongwa chinochengeta password uye zvimwe zvakavanzika zvevashandisi. Inoitwa sedhimoni muchikamu, yakafanana nessh-mumiririri, uye mamwe mashandisirwo anoiwana kuburikidza neyekusiyana kwenzvimbo kana D-Bus. Chirongwa ichi chinogona kubata makiyi akati wandei, imwe neimwe iine yavo tenzi password, uye kune zvakare chikamu chekisheni icho chisina kumbochengetwa kudiski, asi chakakanganikwa panopera musangano. Iyo raibhurari libgnome-keyring inoshandiswa nemaapplication ekubatanidza pamwe neGNOME keyring system.

Izvo zvakashandurwa zvakasununguka zvinoda kuratidza:

• gnome-keyring ndiyo chirongwa chinotarisira kuchengetedza mapassword uye zvimwe zvakavanzika zvevashandisi. Muchikamu chega chega chinomhanya sedhimoni, rakafanana nessh-mumiriri, uye kune zvimwe zvinoshandiswa zvinowanikwa kuburikidza nharaunda inoshanduka - nharaunda kana kuburikidza neD-Bus. Iyo purogiramu inogona kubata akati wandei keyrings, imwe neimwe iine yayo tenzi password. Iko zvakare kune yakakosha chikamu iyo isingatombo chengetwa pane rakaomarara diski uye inokanganikwa kana chikamu chapera. Maapplication anoshandisa raibhurari-yekukiya raibhurari kubatanidza neGNOME keyring system.

Debian neBase Inoshanda Sisitimu

Isu tinotanga kubva pakombuta iyo yatichangobva kuisa Debian 8 "Jessie" seIyo Inoshanda Sisitimu uye panguva yekumisikidza maitiro tinosarudza chete "Basic system zvinoshandiswa", tisingatarise chero imwe sarudzo yekuisa mabasa - mabasa kana akafanofananidzwa mapakeji senge OpenSSH server. Kana mushure mekutanga chikamu chekutanga isu tinoita:

midzi @ tenzi: ~ # pam-auth-update

tichawana zvinotevera zvinobuda:

Izvo zvinotiratidza kuti iyo chete PAM Module iri kushandiswa kusvika panguva iyoyo ndeye UNIX Kusimbiswa. Zvinobatsira pam-Author-kugadzirisa Iyo inotibvumidza isu kumisikidza iyo yepakati yekusimbisa mutemo weiyo system nekushandisa Predefined Profiles yakapihwa neAMAM Module. Kuti uwane rumwe ruzivo ona murume pam-auth-kugadzirisa.

Sezvo isu tisati taisa iyo OpenSSH server, isu hatizowana iyo PAM module mune dhairekitori /etc/pam.d/, iyo ichave iine maPAM module uye ma profiles akatakurwa kusvika kunguva dzino:

midzi @ tenzi: ~ # ls -l /etc/pam.d/
Yakazara 76 -rw-r - r-- 1 midzi midzi 235 Sep 30 2014 atd -rw-r - r-- 1 mudzi midzi 1208 Kubvumbi 6 22:06 zvakajairika-account -rw-r - r-- 1 mudzi mudzi 1221 Kubvumbi 6 22:06 zvakajairika-auth -rw-r - r-- 1 mudzi mudzi 1440 Kubvumbi 6 22:06 zvakajairika-password -rw-r - r-- 1 mudzi mudzi 1156 Apr 6 22:06 zvakajairika-chikamu -rw-r - r-- 1 mudzi mudzi 1154 Kubvumbi 6 22:06 zvakajairika-chikamu-chisingaite -rw-r - r-- 1 mudzi midzi 606 Jun 11 2015 cron -rw-r - r - 1 mudzi mudzi 384 Mbudzi 19 2014 chfn -rw-r - r- 1 mudzi midzi 92 Mbudzi 19 2014 chpasswd -rw-r - r-- 1 mudzi mudzi 581 Mbudzi 19 2014 chsh -rw-r-- r-- 1 mudzi midzi 4756 Mbudzi 19 2014 kupinda -rw-r - r- 1 mudzi mudzi 92 Mbudzi 19 2014 newusers -rw-r - r-- 1 mudzi mudzi 520 Jan 6 2016 zvimwe -rw-r- -r- 1 mudzi mudzi 92 Nov 19 2014 passwd -rw-r - r- 1 mudzi midzi 143 Mar 29 2015 runuser -rw-r - r- 1 mudzi mudzi 138 Mar 29 2015 runuser-l -rw -r - r- 1 mudzi midzi 2257 Mbudzi 19 2014 su -rw-r - r- 1 mudzi midzi 220 Sep 2 2016 systemd-mushandisi

Semuenzaniso, kushandisa iyo PAM module /etc/pam.d/chfn iyo system inogadzirisa sevhisi mumvuri, apo kuburikidza /etc/pam.d/cron daemon rakagadzirirwa cron they. Kuti udzidze zvimwe zvishoma tinogona kuverenga zvirimo mune yega yega mafaera izvo zvinodzidzisa kwazvo. Semuenzaniso isu tinopa pazasi pezviri mukati meiyo module /etc/pam.d/cron:

midzi @ tenzi: ~ # zvishoma /etc/pam.d/cron
# Iyo PAM yekumisikidza faira yeiyo cron daemon

@include zvakajairika-auth

# Inoisa iyo loginuid maitiro ekuti chikamu chinodiwa pam_loginuid.so # Verenga nharaunda nharaunda kubva pam_env's default mafaera, / etc / nharaunda # uye /etc/security/pam_env.conf. chikamu chinodiwa pam_env.so # Mukuwedzera, verenga system locale ruzivo chikamu chinodiwa pam_env.so envfile = / etc / default / locale

@include yakajairika-account
@include zvakajairika-chikamu-chisingaenderane 

# Inogadza mushandisi miganho, ndapota tsanangura miganho yemakoni mabasa # kuburikidza /etc/security/limits.conf chikamu chinodiwa pam_limits.so

Iwo marongero ezvitatimendi mukati meumwe neumwe mafaera akakosha. Kazhinji, isu hatikurudzire kushandura chero chazvo kunze kwekunge tichiziva chaizvo zvatiri kuita.

Debian ine base OS + OpenSSH

midzi @ tenzi: ~ # aptitude yekuisa basa-ssh-server
Aya anotevera NEW mapakeji achaiswa: openssh-server {a} openssh-sftp-server {a} task-ssh-server

Tichaona kuti PAM module yakawedzerwa uye yakagadzirirwa nenzira kwayo ssh:

midzi @ tenzi: ~ # ls -l /etc/pam.d/sshd 
-rw-r-r- 1 midzi midzi 2133 Jul 22 2016 /etc/pam.d/sshd

Kana isu tichida kuziva izvo zvemukati izvo.

midzi @ tenzi: ~ # zvishoma /etc/pam.d/sshd

Mune mamwe mazwi, kana isu tichiedza kutanga chikamu chiri kure kubva kune imwe komputa tichishandisa ssh, kusimbiswa pakombuta yemuno kunoitwa kuburikidza nePAM module ssh kunyanya, pasina kukanganwa kumwe kubvumidzwa uye chengetedzo zvinhu zvinobatanidzwa mune ssh sevhisi zvakadaro.

Mukupfuura, tinowedzera kuti iyo yekumisikidza faira yeiyi sevhisi iri / etc / ssh / sshd_config, uye kuti zvirinani muDebian yakaiswa nekumira pasina kubvumidza yekudyidzana mushandisi kupinda mudzi. Kuibvumira, isu tinofanirwa kushandura iyo faira / etc / ssh / sshd_config uye chinja mutsara:

PermitRootLogin isina-password

kubudikidza

PermitRootLogin hongu

wobva watangazve uye wotarisa mamiriro ebasa racho na:

midzi @ tenzi: ~ # systemctl restart ssh
midzi @ tenzi: ~ # systemctl chimiro ssh

Debian neiyo LXDE desktop

Tinoenderera mberi nechikwata chimwe chete - tinochinja zita ravo kana hostname na "linux box»Zvekushandisa mune ramangwana- kwatakapedza kuisa iyo LXDE Desktop. Ngatimhanyei pam-Author-kugadzirisa uye isu tichawana zvinotevera zvinobuda:

Iyo sisitimu yatogonesa ese maProfiles -Modules- anodikanwa kuti ave nechokwadi chechokwadi panguva yekumisikidzwa kweLXDE desktop, iri inotevera:

• UNIX Yekusimbisa Module.
• Module iyo inorekodha zvikamu zvevashandisi muHierarchical Control Boka reiyo systemd.
• GNOME Keyring Daemon Module

• Isu tinotora mukana uno kukurudzira kuti mune zvese zviitiko, patinobvunzwa "maPAM profiles ekugonesa", tinosarudza sarudzo Kunze kwekunge isu tanyatsoziva chaizvo zvatiri kuita. Kana isu tikachinja iyo PAM yekumisikidza iyo inogadziriswa neiyo Inoshanda Sisitimu pachayo, tinogona kudzima zvirinyore kupinda pakombuta.

Muzviitiko zviri pamusoro zvatiri kutaura nezvazvo Yemunharaunda Kusimbisa kana Kuvimbiswa kupesana nekomputa yemuno sezvazvinoitika kana isu tatanga chikamu chiri kure kuburikidza ssh.

Kana isu tikashandisa nzira ye Remote Kusimbiswa muchikwata chemuno Kune vashandisi vane maCredentials avo akachengetwa mune yakasarudzika OpenLDAP server kana muAlex Directory, iyo system ichatarisisa fomu nyowani yekusimbisa uye ichawedzera anodiwa maPAM mamodule.

Main mafaera

• / etc / passwd: Ruzivo rweAunti Yemushandisi
• / etc / mumvuri: Ruzivo Rwakachengeteka rweMashandisi Maakaundi
• /etc/pam.conf: Faira iro rinofanirwa kushandiswa chete kana dhairekitori risipo /etc/pam.d/
• /etc/pam.d/: Dhairekitori uko zvirongwa nemasevhisi vanoisa yavo PAM mamodule
• /etc/pam.d/passwd: PAM kumisikidzwa kwe passwd.
• /etc/pam.d/common-account: Mvumo paramita inowanikwa kune ese masevhisi
• /etc/pam.d/common-auth: Euthentication parameter yakajairika kune ese masevhisi
• /etc/pam.d/common-password: PAM ma module anowanikwa kune ese masevhisi ane chekuita nemapassword - passwords
• /etc/pam.d/common-session: PAM ma module anowanikwa kune ese masevhisi ane chekuita neshandisi yezvikamu
• /etc/pam.d/common-session-noninteractive: PAM ma module anowanikwa kune ese masevhisi ane chekuita neasina-kupindirana zvikamu kana izvo zvisingade mushandisi kupindira, senge mabasa anoitwa pakutanga nekupera kweasina kufambidzana zvikamu.
• / usr / share / doc / passwd /: Zvinyorwa zvinyorwa.

Tinokurudzira kuverenga iwo echinyorwa mapeji e passwd y mumvuri kuburikidza murume akapasa y mumvuri wemunhu. Izvo zvakare zvine hutano kuverenga zvirimo mumafaira zvakajairika-account, zvakajairika-Author, zvakajairika-passwrod, zvakajairika-chikamu y zvakajairika-chikamu-chisingaenderane.

PAM module inowanikwa

Kuti uwane pfungwa yeAMAM module anowanikwa a priori Mune yakajairwa Debian repository, isu tinomhanya:

buzz @ linuxbox: ~ $ aptitude tsvaga libpam

Rondedzero yacho ndeyakareba uye isu tinongoratidzira ma module anoratidza kuti yakakura sei:

libpam-afs-session          - PAM module to set up a PAG and obtain AFS tokens                    
libpam-alreadyloggedin      - PAM module to skip password authentication for logged users
libpam-apparmor             - changehat AppArmor library as a PAM module
libpam-barada               - PAM module to provide two-factor authentication based on HOTP
libpam-blue                 - PAM module for local authenticaction with bluetooth devices
libpam-ca                   - POSIX 1003.1e capabilities (PAM module)                             
libpam-ccreds               - Pam module to cache authentication credentials                      
libpam-cgrou                - control and monitor control groups (PAM)                            
libpam-chroot               - Chroot Pluggable Authentication Module for PAM                      
libpam-ck-connector         - ConsoleKit PAM module                 
libpam-cracklib             - PAM module to enable cracklib support 
libpam-dbus                 - A PAM module which asks the logged in user for confirmation         
libpam-duo                  - PAM module for Duo Security two-factor authentication               
libpam-dynalogin            - two-factor HOTP/TOTP authentication - implementation libs           
libpam-encfs                - PAM module to automatically mount encfs filesystems on login        
libpam-fprintd              - PAM module for fingerprint authentication trough fprintd            
libpam-geo                  - PAM module checking access of source IPs with a GeoIP database      
libpam-gnome-keyring        - PAM module to unlock the GNOME keyring upon login                   
libpam-google-authenticator - Two-step verification                 
libpam-heimdal              - PAM module for Heimdal Kerberos       
libpam-krb5                 - PAM module for MIT Kerberos           
libpam-krb5-migrate-heimdal - PAM module for migrating to Kerberos  
libpam-lda                  - Pluggable Authentication Module for LDA                         
libpam-ldapd                - PAM module for using LDAP as an authentication service              
libpam-mkhomedir            -         
libpam-mklocaluser          - Configure PAM to create a local user if it do not exist already     
libpam-modules              - Pluggable Authentication Modules for PAM                            
libpam-modules-bin          - Pluggable Authentication Modules for PAM - helper binaries          
libpam-mount                - PAM module that can mount volumes for a user session                
libpam-mysql                - PAM module allowing authentication from a MySQL server              
libpam-nufw                 - The authenticating firewall [PAM module]                            
libpam-oath                 - OATH Toolkit libpam_oath PAM module   
libpam-ocaml                - OCaml bindings for the PAM library (runtime)                        
libpam-openafs-kaserver     - AFS distributed filesystem kaserver PAM module                      
libpam-otpw                 - Use OTPW for PAM authentication       
libpam-p11                  - PAM module for using PKCS#11 smart cards                            
libpam-passwdqc             - PAM module for password strength policy enforcement                 
libpam-pgsql                - PAM module to authenticate using a PostgreSQL database              
libpam-pkcs11               - Fully featured PAM module for using PKCS#11 smart cards             
libpam-pold                 - PAM module allowing authentication using a OpenPGP smartcard        
libpam-pwdfile              - PAM module allowing authentication via an /etc/passwd-like file     
libpam-pwquality            - PAM module to check password strength 
libpam-python               - Enables PAM modules to be written in Python                         
libpam-python-doc           - Documentation for the bindings provided by libpam-python            
libpam-radius-auth          - The PAM RADIUS authentication module  
libpam-runtime              - Runtime support for the PAM library   
libpam-script               - PAM module which allows executing a script                          
libpam-shield               - locks out remote attackers trying password guessing                 
libpam-shish                - PAM module for Shishi Kerberos v5     
libpam-slurm                - PAM module to authenticate using the SLURM resource manager         
libpam-smbpass              - pluggable authentication module for Samba                           
libpam-snapper              - PAM module for Linux filesystem snapshot management tool            
libpam-ssh                  - Authenticate using SSH keys           
libpam-sshauth              - authenticate using an SSH server      
libpam-sss                  - Pam module for the System Security Services Daemon                  
libpam-systemd              - system and service manager - PAM module                             
libpam-tacplus              - PAM module for using TACACS+ as an authentication service           
libpam-tmpdir               - automatic per-user temporary directories                            
libpam-usb                  - PAM module for authentication with removable USB block devices      
libpam-winbind              - Windows domain authentication integration plugin                    
libpam-yubico               - two-factor password and YubiKey OTP PAM module                      
libpam0g                    - Pluggable Authentication Modules library                            
libpam0g-dev                - Development files for PAM             
libpam4j-java               - Java binding for libpam.so            
libpam4j-java-doc           - Documentation for Java binding for libpam.so

Dhirina yako mhedziso.

CentOS

Kana panguva yekumisikidza isu tikasarudza sarudzo «Server ine GUI«, Tichawana chikuva chakanaka chekushandisa akasiyana masevhisi eSME Network. Kusiyana neDebian, CentOS / Red Hat® inopa yakateedzana yekoni uye graphical zvishandiso zvinoita kuti hupenyu huve nyore kuSystem kana Network Administrator.

Zvinyorwa

Yakaiswa nekutadza, tinoiwana mune dhairekitori:

[midzi @ linuxbox ~] # ls -l / usr/share/doc/pam-1.1.8/
yakazara 256 -rw-r-r--. 1 mudzi midzi 2045 Jun 18 2013 Copyright drwxr-xr-x. 2 mudzi mudzi 4096 Kubvumbi 9 06:28 HTML
-rw-r-r-. 1 mudzi mudzi 175382 Nov 5 19:13 Linux-PAM_SAG.txt -rw-r-r--. 1 mudzi mudzi 67948 Jun 18 2013 rfc86.0.txt drwxr-xr-x. 2 mudzi mudzi 4096 Kubvumbi 9 06:28 txts

[midzi @ linuxbox ~] # ls / usr/share/doc/pam-1.1.8/txts/
README.pam_access README.pam_exec README.pam_lastlog README.pam_namespace README.pam_selinux README.pam_timestamp README.pam_console README.pam_faildelay README.pam_limits README.pam_nologin README.pam_sepermit README.pam_tty_audit README.pam_cracklib README.pam_faillock README.pam_listfile README.pam_permit README. pam_shells README.pam_umask README.pam_chroot README.pam_filter README.pam_localuser README.pam_postgresok README.pam_stress README.pam_unix README.pam_debug README.pam_ftp README.pam_loginuid README.pam_pwhistory README.pam_succeed_if README.pam_userdb README.pam_deny README.pam_group README.pam_mail README .pam_rhosts README.pam_tally README.pam_warn README.pam_echo README README.pam_issue README.pam_mkhomedir README.pam_rootok README.pam_tally2 README.pam_wheel README.MEDE

Ehe, isu tinodaidzawo timu yeCentOS "linuxbox" sezvakaita naDebian, inozotishandira kune zvinyorwa zvemberi pane SMB Networks.

CentOS neGNOME3 GUI

Patinosarudza panguva yekumisikidza sarudzo «Server ine GUI«, Iyo GNOME3 Desktop uye zvimwe zvinoshandiswa uye zvirongwa zvepasi zvakaisirwa kugadzira sevha. Padanho renyaradzo, kuziva mamiriro echokwadi atinoita.

[midzi @ linuxbox ~] # authconfig-tui

Isu tinoona kuti iwo chete maPAM mamodule anodikanwa kune yazvino server kumisikidzwa anogoneswa, kunyangwe module yekuverenga zvigunwe, sisitimu sisitimu yatinowana mune mamwe mamodheru eLaptops.

CentOS neGNOME3 GUI yakabatana neMicrosoft Active Directory

Sekuona kwedu, ma module anodiwa akawedzerwa uye akagoneswa -winbind- yekusimbisa kupokana neAnoshanda Dhairekitori, nepo isu nechinangwa tichiremadza module kuti tiverenge mafinger prints, nekuti hazvidiwe.

Mune chinyorwa mune ramangwana isu tichafukidza zvakadzama maitiro ekubatana neCentOS 7 mutengi kune Microsoft Active Directory. Isu tinongofungidzira izvozvo kuburikidza nechombo autoconfig-gtk Kuisirwa mapakeji anodikanwa, kumisikidza kwekusika otomatiki kwevatungamiriri vevashandisi vechiratidziro izvo zvinosimbisa munharaunda, uye maitiro acho pachawo ekubatana nemutengi kune Domain yeAnoshanda Directory inoshamisa kwazvo. Zvichida mushure memubatanidzwa, zvichazongodiwa kuti utangezve komputa.

Main mafaera

Iwo mafaera ane chekuita neCentOS Kuvimbiswa ari mune dhairekitori /etc/pam.d/:

[midzi @ linuxbox ~] # ls /etc/pam.d/
atd liveinst smartcard-auth-ac authconfig login smtp authconfig-gtk imwe smtp.postfix authconfig-tui passwd sshd config-use password-auth su crond password-auth-ac sudo makapu pluto sudo-i chfn polkit-1 su-l chsh postlogin system-auth fingapurindi-auth postlogin-ac system-auth-ac chigunwe-auth-ac ppp sisitimu-yekumisikidza-gdm-autologin iri kure systemd-mushandisi gdm-chigunwe chigunwe runuser vlock gdm-kuvhura-nharaunda runuser-l vmtoolsd gdm-password samba xserver gdm-pini yekumisikidza gdm-smartcard smartcard-auth

PAM module inowanikwa

Tine zvinyorwa base, centosplus, epel, y inogadziridza. Mavari tinowana -pakati pevamwe- ma module anotevera vachishandisa mirairo yum tsvaga pam-,  yum tsvaga pam_uye yum tsvaga libpam:

nss-pam-ldapd.i686: Iyo nsswitch module iyo inoshandisa dhairekitori maseva nss-pam-ldapd.x86_64: nsswitch module iyo inoshandisa dhairekitori maseva ovirt-muenzi-mumiriri-pam-module.x86_64: PAM module yeOVirt Guest Agent pam -kwallet. via MAPI against a Zarafa server pam_oath.x86_64: A PAM module for pluggable login authentication for OATH pam_pkcs86.i64: PKCS # 5 / NSS PAM login module pam_pkcs686.x5_5: PKCS # 86 / NSS PAM login module pam_radius.x64_5: PAM Module RADIUS Kusimbiswa pam_script.x86_64: PAM module yekuita zvinyorwa pam_snapper.i86: PAM module yekudaidza snapper pam_snapper.x64_11: PAM module yekufona snapper pam_ssh.x686_11: PAM module yekushandisa neSSH makiyi uye ssh-mumiriri pam_ssh_agent_11 86: PAM module yekusimbiswa ne ssh-mumiriri pam_ssh_agent_auth.x64_11: PAM module yekusimbiswa ne ssh-mumiriri pam_url.x86_64: PAM module yekusimbisa nemaseva eHTTP pam_wrapper.x86_64: Chishandiso chekuyedza PAM mafomu uye PAM module pam_yubico.x686_86: Module Inobvumika Yekusimbisa ye yubikeys libpamtest-doc.x64_86: Iyo libpamtest API zvinyorwa python-libpamtest.x64_686: Iyo python inoputira libpamtest libpamtest.x86_64: Chishandiso kuyedza PAM mafomu uye PAM module libpamtest-devel.x86_64: Chishandiso kuyedza PAM kunyorera uye PAM module

Resumen

Izvo zvakakosha kuve nerushoma ruzivo pamusoro pePAM kana tichida kunzwisisa nenzira yakajairika kuti Kusimbisa kunoitwa sei nguva dzese dzatinopinda mukombuta yedu yeLinux / UNIX. Izvo zvakakoshawo kuti uzive kuti chete neKusimbisa Kwenharaunda ndimo matinogona kupa masevhisi kune mamwe makomputa mune diki SME network senge Proxy, Tsamba, FTP, nezvimwe, zvese zvakaiswa pane imwechete server. Ese masevhisi apfuura - uye zvimwe zvakawanda sezvatakaona kare- vane yavo PAM module.

Masosi akabvunzwa

• Raira mabhuku - mapeji emurume.
• Kusimbiswa: Wikipedia peji muchiSpanish
• Plugable Yekusimbisa Mamojuru
• Red_Hat_Enterprise_Linux-6-Kutumirwa_Guide-en-US

Shanduro yePDF

Dhawunirodha iyo vhezheni yePDF pano.

Kusvikira chinyorwa chinotevera!

Munyori: Federico A. Valdes Toujague
federicotoujague@gmail.com
https://blog.desdelinux.net/author/fico