*nix Documentation Project
·  Home
 +   man pages
·  Linux HOWTOs
·  FreeBSD Tips
·  *niX Forums

  man pages->FreeBSD man pages -> pam_radius (8)              
Title
Content
Arch
Section
 

PAM_RADIUS(8)

Contents


NAME    [Toc]    [Back]

     pam_radius -- RADIUS authentication PAM module

SYNOPSIS    [Toc]    [Back]

     [service-name] module-type control-flag pam_radius [options]

DESCRIPTION    [Toc]    [Back]

     The pam_radius module provides authentication services based upon the
     RADIUS (Remote Authentication Dial In User Service) protocol for the PAM
     (Pluggable Authentication Module) framework.

     The pam_radius module accepts these optional parameters:

     use_first_pass
                 causes pam_radius to use a previously entered password
                 instead of prompting for a new one.  If no password has been
                 entered then authentication fails.

     try_first_pass
                 causes pam_radius to use a previously entered password, if
                 one is available.  If no password has been entered,
                 pam_radius prompts for one as usual.

     echo_pass   causes echoing to be left on if pam_radius prompts for a
                 password.

     conf=pathname
                 specifies a non-standard location for the RADIUS client configuration
 file (normally located in /etc/radius.conf).

     nas_id=identifier
                 specifies a NAS identifier to send instead of the hostname.

     template_user=username
                 specifies a user whose passwd(5) entry will be used as a template
 to create the session environment if the supplied username
 doesn't exist in local password database.  The user will
                 be authenticated with the supplied username and password, but
                 his credentials to the system will be presented as the ones
                 for username, i.e., his login class, home directory, resource
                 limits, etc. will be set to ones defined for username.

                 If this option is omitted, and there is no username in the
                 system databases equal to the supplied one (as determined by
                 call to getpwnam(3)), the authentication will fail.

     nas_ipaddr[=address]
                 specifies a NAS IP address to be sent.  If option is present,
                 but there is no value provided then IP address corresponding
                 to the current hostname will be used.

FILES    [Toc]    [Back]

     /etc/radius.conf  The standard RADIUS client configuration file for
                       pam_radius

SEE ALSO    [Toc]    [Back]

      
      
     passwd(5), radius.conf(5), pam(8)

HISTORY    [Toc]    [Back]

     The pam_radius module first appeared in FreeBSD 3.1.  The pam_radius manual
 page first appeared in FreeBSD 3.3.

AUTHORS    [Toc]    [Back]

     The pam_radius manual page was written by Andrzej Bialecki
     <abial@FreeBSD.org>.

     The pam_radius module was written by John D. Polstra <jdp@FreeBSD.org>.


FreeBSD 5.2.1                  October 28, 2002                  FreeBSD 5.2.1
[ Back ]
 Similar pages
Name OS Title
pam HP-UX Pluggable Authentication Module
pam_tacplus FreeBSD TACACS+ authentication PAM module
ModuleManagerAuthenticate Tru64 Module manager authentication (CDSA)
libradius FreeBSD RADIUS client library
radius.conf FreeBSD RADIUS client configuration file
bbox2 IRIX culls and prunes to bounding box and minimum pixel radius
ldr_inq_region Tru64 Return module information about a region in a loaded module
secauthmigrate Tru64 Convert ULTRIX auth(5) authentication data to authcap(4) authentication data (Enhanced Security)
pam_self FreeBSD Self PAM module
pam_securetty FreeBSD SecureTTY PAM module
Copyright © 2004-2005 DeniX Solutions SRL
newsletter delivery service