An extensible library which provides authentication for applications
PAM (Pluggable Authentication Modules) is a system security tool that
allows system administrators to set authentication policy without
having to recompile programs that handle authentication.
Version: 1.6.1
See also: pam_abl, pam_afs_session, pam_cifscreds, pam-devel, pam_duo, pam_krb5, pam_mount, pam_passwdqc, pam_script, pam_snapper, pam_ssh, pam_ssh_agent_auth, pam-ssh-auth-info, pam-u2f, pam_wrapper, pam_yubico.
File Formats | |
| access.conf | the login access control table file |
| config-util | Common PAM configuration file for configuration utilities |
| environment | alias for pam_env.conf |
| faillock.conf | pam_faillock configuration file |
| fingerprint-auth | alias for system-auth |
| group.conf | configuration file for the pam_group module |
| limits.conf | configuration file for the pam_limits module |
| namespace.conf | the namespace configuration file |
| pam.conf | PAM configuration files |
| pam.d | alias for pam.conf |
| pam_env.conf | the environment variables config files |
| password-auth | alias for system-auth |
| postlogin | Common configuration file for PAMified services |
| pwhistory.conf | pam_pwhistory configuration file |
| sepermit.conf | configuration file for the pam_sepermit module |
| smartcard-auth | alias for system-auth |
| system-auth | Common configuration file for PAMified services |
| time.conf | configuration file for the pam_time module |
System Administration | |
| PAM | Pluggable Authentication Modules for Linux |
| faillock | Tool for displaying and modifying the authentication failure record files |
| mkhomedir_helper | Helper binary that creates home directories |
| pam_access | PAM module for logdaemon style login access control |
| pam_canonicalize_user | Get user name and canonicalize it |
| pam_debug | PAM module to debug the PAM stack |
| pam_deny | The locking-out PAM module |
| pam_echo | PAM module for printing text messages |
| pam_env | PAM module to set/unset environment variables |
| pam_exec | PAM module which calls an external command |
| pam_faildelay | Change the delay on failure per-application |
| pam_faillock | Module counting authentication failures during a specified interval |
| pam_filter | PAM filter module |
| pam_ftp | PAM module for anonymous access module |
| pam_group | PAM module for group access |
| pam_issue | PAM module to add issue file to user prompt |
| pam_keyinit | Kernel session keyring initialiser module |
| pam_lastlog | PAM module to display date of last login and perform inactive account lock out |
| pam_limits | PAM module to limit resources |
| pam_listfile | deny or allow services based on an arbitrary file |
| pam_localuser | require users to be listed in /etc/passwd |
| pam_loginuid | Record user's login uid to the process attribute |
| pam_mail | Inform about available mail |
| pam_mkhomedir | PAM module to create users home directory |
| pam_motd | Display the motd file |
| pam_namespace | PAM module for configuring namespace for a session |
| pam_namespace_helper | Helper binary that creates home directories |
| pam_nologin | Prevent non-root users from login |
| pam_permit | The promiscuous module |
| pam_postgresok | simple check of real UID and corresponding account name |
| pam_pwhistory | PAM module to remember last passwords |
| pam_rhosts | The rhosts PAM module |
| pam_rootok | Gain only root access |
| pam_securetty | Limit root login to special devices |
| pam_selinux | PAM module to set the default security context |
| pam_sepermit | PAM module to allow/deny login depending on SELinux enforcement state |
| pam_setquota | PAM module to set or modify disk quotas on session start |
| pam_shells | PAM module to check for valid login shell |
| pam_stress | The stress-testing PAM module |
| pam_succeed_if | test account characteristics |
| pam_time | PAM module for time control access |
| pam_timestamp | Authenticate using cached successful authentication attempts |
| pam_timestamp_check | Check to see if the default timestamp is valid |
| pam_tty_audit | Enable or disable TTY auditing for specified users |
| pam_umask | PAM module to set the file mode creation mask |
| pam_unix | Module for traditional password authentication |
| pam_userdb | PAM module to authenticate against a db database |
| pam_usertype | check if the authenticated user is a system or regular account |
| pam_warn | PAM module which logs all PAM items if called |
| pam_wheel | Only permit root access to members of group wheel |
| pam_xauth | PAM module to forward xauth keys between users |
| pwhistory_helper | Helper binary that transfers password hashes from passwd or shadow to opasswd |
| unix_chkpwd | Helper binary that verifies the password of the current user |
| unix_update | Helper binary that updates the password of a given user |