Difference between revisions of "PAM"
From Nuclear Physics Group Documentation Pages
Jump to navigationJump to search| Line 5: | Line 5: | ||
Chart of what groups can log onto what machines: | Chart of what groups can log onto what machines: | ||
{| border="1" cellspacing="0" cellpadding="5" | {| border="1" cellspacing="0" cellpadding="5" | ||
| − | ! name | + | ! name !! restricted by access.conf !! nogroup !! npg !! farm !! domain_admins |
| − | ! restricted by access.conf | ||
| − | ! nogroup | ||
| − | ! npg | ||
| − | ! farm | ||
| − | ! domain_admins | ||
|- | |- | ||
| − | | [[einstein]] | + | | [[einstein]] || no || yes || yes || yes || yes |
| − | | no | ||
| − | | yes | ||
| − | | yes | ||
| − | | yes | ||
| − | | yes | ||
|- | |- | ||
| − | | [[lentil]] | + | | [[lentil]] || no || yes || yes || yes || yes |
| − | | | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | | no | ||
| − | | | ||
| − | |||
| − | |||
| − | | yes | ||
| − | | | ||
| − | | yes | ||
| − | | | ||
| − | | yes | ||
| − | | | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | | yes | ||
|- | |- | ||
| − | | [[ | + | | [[gourd]] || yes || yes || yes|| yes || yes |
| − | | yes | + | |- |
| − | | yes | + | | [[roentgen]] || yes || no || yes || no || no |
| − | | yes | + | |- |
| − | | yes | + | | [[taro]] || yes || yes || yes || no? || yes |
| − | | yes | + | |- |
| + | | [[pepper]] || yes || yes || no? || yes || yes | ||
| + | |- | ||
| + | | [[jalapeno]] || yes || no || yes || no || yes | ||
| + | |- | ||
| + | | [[tomato]] || no || yes || yes || yes || yes | ||
| + | |- | ||
| + | | [[okra]] || yes || no || yes || no || yes | ||
|- | |- | ||
|} | |} | ||
Revision as of 13:31, 31 July 2007
"Pluggable Authentication Module." Programs that are aware of PAM use the modules defined in the PAM configuration files for making authentication/access decisions.
Access Control
/etc/pam.d/sshd contains account required pam_access.so. /etc/security/access.conf contains the rules for who can log into the machine.
Chart of what groups can log onto what machines:
| name | restricted by access.conf | nogroup | npg | farm | domain_admins |
|---|---|---|---|---|---|
| einstein | no | yes | yes | yes | yes |
| lentil | no | yes | yes | yes | yes |
| gourd | yes | yes | yes | yes | yes |
| roentgen | yes | no | yes | no | no |
| taro | yes | yes | yes | no? | yes |
| pepper | yes | yes | no? | yes | yes |
| jalapeno | yes | no | yes | no | yes |
| tomato | no | yes | yes | yes | yes |
| okra | yes | no | yes | no | yes |
