Authenticate on RADIUS protocol
Syntax:
facility control_flag pam_radius.so [use_first_pass]
[try_first_pass] [echo_pass] [conf=pathname] [nas_id=identifier]
[template_user=username] [nas_ipaddr=[address]
Options:
- use_first_pass
- Use the one most recently entered and fails if there is none. Does not prompt for a new
password.
- try_first_pass
- Try to use the most recently entered password and, if none has been entered, prompt for
a new one.
- echo_pass
- Leave echoing on if pam_radius prompts for a password.
- conf=pathname
- Location for the RADIUS client configuration file, if not /etc/radius.conf.
- nas_id=identifier
- Use this NAS identifier, instead of the host name.
- template_user=username
- If the name supplied does not exist in the local password database, use the password
entry for username as a template to create the session
environment. If username is not provided with this option
and an equivalent one does not exist, authentication fails.
- nas_ipaddr=[address]
- The NAS IP address to use. If an address is not specified with this option,
use the IP address of the current hostname.
Description:
Use the pam_radius module to base PAM authentication services on the
RADIUS protocol.
Note: The PAM module syntax does not stand alone and is contained within the context of the PAM
configuration command. See the
Security
Developer's Guide for more information about system authentication,
configuring PAM, facilities, control flags, examples, and how QNX Neutrino uses the OpenPAM framework.
Service category:
This module belongs to the auth PAM service category.
Exit status:
Returns success if it authenticates on the RADIUS protocol.
Returns failure if it does not authenticate on the RADIUS protocol.