개요

• 솔라나라에 설명된 어플리케이션에 대해 맨 페이지를 찾아 출력한다.
• MAN 페이지에 대한 설명은 윈디하나의 솔라나라: MAN 페이지을 참고하자.
• svcadm(1M)을 검색하려면 섹션에서 1M 을 선택하고, 맨 페이지 이름에 svcadm을 입력하고 검색을 누른다.

pam_acct_mgmt(3pam)

pam_acct_mgmt(3PAM)          PAM Library Functions         pam_acct_mgmt(3PAM)



NAME
       pam_acct_mgmt - perform PAM account validation procedures

SYNOPSIS
       cc [ flag ... ] file ... -lpam [ library ... ]
       #include <security/pam_appl.h>

       int pam_acct_mgmt(pam_handle_t *pamh, int flags);

DESCRIPTION
       The  pam_acct_mgmt()  function  is  called  to determine if the current
       authenticated user's account is  valid.  This  includes  the  following
       checks:

           o      Password expiry


           o      If the password needs to be changed


           o      Account expiry


           o      Account inactivity


           o      If the account is locked


           o      The  /etc/nologin file is not present, unless the user has a
                  uid of 0, has the root role, or is assigned the solaris.sys‐
                  tem.maintenance authorization (see nologin(5))



       The  pam_acct_mgmt()  function  is  typically called after the user has
       been authenticated with pam_authenticate(3PAM).


       The pamh argument is an authentication handle obtained by a prior  call
       to pam_start(). The following flags may be set in the flags field:

       PAM_SILENT                   The  account management service should not
                                    generate any messages.


       PAM_DISALLOW_NULL_AUTHTOK    The  account  management  service   should
                                    return  PAM_NEW_AUTHTOK_REQD  if  the user
                                    has a null authentication token.


RETURN VALUES
       Upon successful completion, PAM_SUCCESS is returned. In addition to the
       error return values described in pam(3PAM), the following values may be
       returned:

       PAM_USER_UNKNOWN        User not known to underlying account management
                               module.


       PAM_AUTH_ERR            Authentication failure.


       PAM_NEW_AUTHTOK_REQD    New authentication token required. This is nor‐
                               mally returned if the machine security policies
                               require  that  the  password  should be changed
                               because the password is null or has aged.


       PAM_ACCT_EXPIRED        User account has expired.


       PAM_LOGINS_DISABLED     Logins for non-root/maintenance users are  dis‐
                               abled  due  to the presence of the /etc/nologin
                               file. See nologin(5)


ATTRIBUTES
       See attributes(7) for description of the following attributes:


       tab() box; cw(2.75i) |cw(2.75i) lw(2.75i) |lw(2.75i) ATTRIBUTE  TYPEAT‐
       TRIBUTE  VALUE  _  Interface  StabilityCommitted _ MT-LevelMT-Safe with
       exceptions


SEE ALSO
       libpam(3LIB), pam(3PAM), pam_authenticate(3PAM), pam_start(3PAM), nolo‐
       gin(5), attributes(7)

NOTES
       The  interfaces  in  libpam  are MT-Safe only if each thread within the
       multithreaded application uses its own PAM handle.



Oracle Solaris 11.4               3 Nov 2021               pam_acct_mgmt(3PAM)