Man page or keyword search:   man All Sections 1 - General Commands 2 - System Calls 3 - Subroutines, Functions 4 - Special Files 5 - File Formats 6 - Games and Screensavers 7 - Macros and Conventions 8 - Maintenence Commands 9 - Kernel Interface New Commands Server 4.4BSD AIX Alpinelinux Archlinux Aros BSDOS BSDi Bifrost CentOS Cygwin Darwin Debian DigitalUNIX DragonFly ElementaryOS Fedora FreeBSD Gentoo GhostBSD HP-UX Haiku Hurd IRIX Inferno JazzOS Kali Knoppix LinuxMint MacOSX Mageia Mandriva Manjaro Minix MirBSD NeXTSTEP NetBSD OPENSTEP OSF1 OpenBSD OpenDarwin OpenIndiana OpenMandriva OpenServer OpenSuSE OpenVMS Oracle PC-BSD Peanut Pidora Plan9 QNX Raspbian RedHat Scientific Slackware SmartOS Solaris SuSE SunOS Syllable Tru64 UNIXv7 Ubuntu Ultrix UnixWare Xenix YellowDog aLinux   31170 pages apropos Keyword Search (all sections) Output format html ascii pdf view pdf save postscript

PAM_SSS(8)		       SSSD Manual pages		    PAM_SSS(8)

NAME
       pam_sss - PAM module for SSSD

SYNOPSIS
       pam_sss.so [quiet] [forward_pass] [use_first_pass] [use_authtok]
		  [retry=N]

DESCRIPTION
       pam_sss.so is the PAM interface to the System Security Services daemon
       (SSSD). Errors and results are logged through syslog(3) with the
       LOG_AUTHPRIV facility.

OPTIONS
       quiet
	   Suppress log messages for unknown users.

       forward_pass
	   If forward_pass is set the entered password is put on the stack for
	   other PAM modules to use.

       use_first_pass
	   The argument use_first_pass forces the module to use a previous
	   stacked modules password and will never prompt the user - if no
	   password is available or the password is not appropriate, the user
	   will be denied access.

       use_authtok
	   When password changing enforce the module to set the new password
	   to the one provided by a previously stacked password module.

       retry=N
	   If specified the user is asked another N times for a password if
	   authentication fails. Default is 0.

	   Please note that this option might not work as expected if the
	   application calling PAM handles the user dialog on its own. A
	   typical example is sshd with PasswordAuthentication.

MODULE TYPES PROVIDED
       All module types (account, auth, password and session) are provided.

FILES
       If a password reset by root fails, because the corresponding SSSD
       provider does not support password resets, an individual message can be
       displayed. This message can e.g. contain instructions about how to
       reset a password.

       The message is read from the file pam_sss_pw_reset_message.LOC where
       LOC stands for a locale string returned by setlocale(3). If there is no
       matching file the content of pam_sss_pw_reset_message.txt is displayed.
       Root must be the owner of the files and only root may have read and
       write permissions while all other users must have only read
       permissions.

       These files are searched in the directory
       /etc/sssd/customize/DOMAIN_NAME/. If no matching file is present a
       generic message is displayed.

SEE ALSO
       sssd(8), sssd.conf(5), sssd-ldap(5), sssd-krb5(5), sssd-simple(5),
       sssd-ipa(5), sssd-ad(5), sssd-sudo(5),sss_cache(8), sss_debuglevel(8),
       sss_groupadd(8), sss_groupdel(8), sss_groupshow(8), sss_groupmod(8),
       sss_useradd(8), sss_userdel(8), sss_usermod(8), sss_obfuscate(8),
       sss_seed(8), sssd_krb5_locator_plugin(8), sss_ssh_authorizedkeys(8),
       sss_ssh_knowhostsproxy(8),pam_sss(8).

AUTHORS
       The SSSD upstream - http://fedorahosted.org/sssd

SSSD				  04/23/2013			    PAM_SSS(8)

Vote for polarhome