pam_chauthtok(3pam) 맨 페이지 - 윈디하나의 솔라나라

개요

섹션
맨 페이지 이름
검색(S)

pam_chauthtok(3pam)

pam_chauthtok(3PAM)          PAM Library Functions         pam_chauthtok(3PAM)



NAME
       pam_chauthtok  -  perform  password  related  functions  within the PAM
       framework

SYNOPSIS
       cc [ flag ... ] file ... -lpam [ library ... ]
       #include <security/pam_appl.h>

       int pam_chauthtok(pam_handle_t *pamh, const int flags);

DESCRIPTION
       The pam_chauthtok() function is called  to  change  the  authentication
       token  associated  with a particular user referenced by the authentica‐
       tion handle pamh.


       The following flag may be passed in to pam_chauthtok():

       PAM_SILENT                    The password service should not  generate
                                     any messages.


       PAM_CHANGE_EXPIRED_AUTHTOK    The  password  service should only update
                                     those passwords that have aged.  If  this
                                     flag is not passed, all password services
                                     should update their passwords.


       PAM_NO_AUTHTOK_CHECK          The password service should  not  perform
                                     conformance   checks   on   the  password
                                     entered.



       Upon successful completion of the call, the authentication token of the
       user will be changed in accordance with the password service configured
       in the system through pam.conf(5).

RETURN VALUES
       Upon successful completion, PAM_SUCCESS is returned. In addition to the
       error return values described in pam(3PAM), the following values may be
       returned:

       PAM_PERM_DENIED              No permission.


       PAM_AUTHTOK_ERR              Authentication token manipulation error.


       PAM_AUTHTOK_RECOVERY_ERR     Authentication   information   cannot   be
                                    recovered.


       PAM_AUTHTOK_LOCK_BUSY        Authentication token lock busy.


       PAM_AUTHTOK_DISABLE_AGING    Authentication token aging disabled.


       PAM_USER_UNKNOWN             User unknown to password service.


       PAM_TRY_AGAIN                Preliminary   check  by  password  service
                                    failed.


ATTRIBUTES
       See attributes(7) for description of the following attributes:


       tab() box; cw(2.75i) |cw(2.75i) lw(2.75i) |lw(2.75i) ATTRIBUTE  TYPEAT‐
       TRIBUTE  VALUE  _  Interface  StabilityCommitted _ MT-LevelMT-Safe with
       exceptions


SEE ALSO
       pam(3PAM),   login(1),   passwd(1),   pam_start(3PAM),    pam_authenti‐
       cate(3PAM), attributes

NOTES
       The flag PAM_CHANGE_EXPIRED_AUTHTOK is typically used by a login appli‐
       cation which has determined  that  the  user's  password  has  aged  or
       expired.  Before  allowing the user to login, the login application may
       invoke pam_chauthtok() with this flag to allow the user to  update  the
       password. Typically, applications such as passwd(1) should not use this
       flag.


       The  pam_chauthtok()  function  performs  a  preliminary  check  before
       attempting  to update passwords. This check is performed for each pass‐
       word module in the stack  as  listed  in  pam.conf(5).  The  check  may
       include  pinging  remote  name services to determine if they are avail‐
       able. If pam_chauthtok() returns  PAM_TRY_AGAIN,  then  the  check  has
       failed, and passwords are not updated.


       The  flag PAM_NO_AUTHTOK_CHECK is typically used by programs that allow
       an administrator to bypass various  password  conformance  checks  when
       setting a password for a user.


       For  security  reasons,  pam_chauthtok()  clears  the  PAM_AUTHTOK  and
       PAM_OLDAUTHTOK items in the PAM handle prior to returning to the  call‐
       ing application.


       The  interfaces  in  libpam  are MT-Safe only if each thread within the
       multithreaded application uses its own PAM handle.



Oracle Solaris 11.4               16 Mar 2016              pam_chauthtok(3PAM)
맨 페이지 내용의 저작권은 맨 페이지 작성자에게 있습니다.
RSS ATOM XHTML 5 CSS3