pam_fprintd - Man Page
PAM module to authenticate against fprintd, the fingerprint daemon
Synopsis
pam_fprintd.so [debug|debug=[on|off|true|false|1|0]] [max-tries=MAX_TRIES] [timeout=TIMEOUT]
Description
The pam_fprintd module is used to verify a user's fingerprints against fingerprints enrolled using fprintd, the fingerprint management daemon.
Options
- debug
- debug=[on|off|true|false|1|0]
Whether debug should be turned on or off. Debug messages will be generated using pam_syslog which means that they will be saved in the systemd journal by default.
- max-tries=MAX_TRIES
The number of attempts at fingerprint authentication to try before returning an authentication failure. The minimum number of tries is 1 while the default is 3.
- timeout=TIMEOUT
The amount of time before returning an authentication failure. The default timeout is 30 seconds, with 10 seconds being the minimum.
Limitations
The PAM stack is by design a serialised authentication, so it is not possible for pam_fprintd to allow authentication through passwords and fingerprints at the same time.
It is up to the application using the PAM services to implement separate PAM processes and run separate authentication stacks separately. This is the way multiple authentication methods are made available to users of gdm for example.
Author
fprintd was written by Bastien Nocera.
See Also
fprintd, PAM