{"id":3719,"date":"2022-12-20T17:19:51","date_gmt":"2022-12-20T20:19:51","guid":{"rendered":"http:\/\/lode.uno\/linux-man\/index.php\/2022\/12\/20\/pam_usertype-man8\/"},"modified":"2022-12-20T17:19:51","modified_gmt":"2022-12-20T20:19:51","slug":"pam_usertype-man8","status":"publish","type":"post","link":"https:\/\/lode.uno\/linux-man\/2022\/12\/20\/pam_usertype-man8\/","title":{"rendered":"PAM_USERTYPE (man8)"},"content":{"rendered":"<h1 align=\"center\">PAM_USERTYPE<\/h1>\n<p> <a href=\"#NAME\">NAME<\/a><br \/> <a href=\"#SYNOPSIS\">SYNOPSIS<\/a><br \/> <a href=\"#DESCRIPTION\">DESCRIPTION<\/a><br \/> <a href=\"#OPTIONS\">OPTIONS<\/a><br \/> <a href=\"#MODULE TYPES PROVIDED\">MODULE TYPES PROVIDED<\/a><br \/> <a href=\"#RETURN VALUES\">RETURN VALUES<\/a><br \/> <a href=\"#EXAMPLES\">EXAMPLES<\/a><br \/> <a href=\"#SEE ALSO\">SEE ALSO<\/a><br \/> <a href=\"#AUTHOR\">AUTHOR<\/a> <\/p>\n<hr>\n<h2>NAME <a name=\"NAME\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">pam_usertype \u2212 check if the authenticated user is a system or regular account<\/p>\n<h2>SYNOPSIS <a name=\"SYNOPSIS\"><\/a> <\/h2>\n<table width=\"100%\" border=\"0\" rules=\"none\" frame=\"void\" cellspacing=\"0\" cellpadding=\"0\">\n<tr valign=\"top\" align=\"left\">\n<td width=\"11%\"><\/td>\n<td width=\"57%\">\n<p style=\"margin-top: 1em\"><b>pam_usertype.so<\/b> [<i>flag<\/i>&#8230;] {<i>condition<\/i>}<\/p>\n<\/td>\n<td width=\"32%\"> <\/td>\n<\/tr>\n<\/table>\n<h2>DESCRIPTION <a name=\"DESCRIPTION\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">pam_usertype.so is designed to succeed or fail authentication based on type of the account of the authenticated user. The type of the account is decided with help of <i>SYS_UID_MIN<\/i> and <i>SYS_UID_MAX<\/i> settings in <i>\/etc\/login.defs<\/i>. One use is to select whether to load other modules based on this test.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">The module should be given only one condition as module argument. Authentication will succeed only if the condition is met.<\/p>\n<h2>OPTIONS <a name=\"OPTIONS\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">The following <i>flag<\/i>s are supported:<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>use_uid<\/b><\/p>\n<p style=\"margin-left:17%;\">Evaluate conditions using the account of the user whose UID the application is running under instead of the user being authenticated.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>audit<\/b><\/p>\n<p style=\"margin-left:17%;\">Log unknown users to the system log.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">Available <i>condition<\/i>s are:<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>issystem<\/b><\/p>\n<p style=\"margin-left:17%;\">Succeed if the user is a system user.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>isregular<\/b><\/p>\n<p style=\"margin-left:17%;\">Succeed if the user is a regular user.<\/p>\n<h2>MODULE TYPES PROVIDED <a name=\"MODULE TYPES PROVIDED\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">All module types (<b>account<\/b>, <b>auth<\/b>, <b>password<\/b> and <b>session<\/b>) are provided.<\/p>\n<h2>RETURN VALUES <a name=\"RETURN VALUES\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">PAM_SUCCESS<\/p>\n<p style=\"margin-left:17%;\">The condition was true.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">PAM_AUTH_ERR<\/p>\n<p style=\"margin-left:17%;\">The condition was false.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">PAM_SERVICE_ERR<\/p>\n<p style=\"margin-left:17%;\">A service error occurred or the arguments can&#8217;t be parsed correctly.<\/p>\n<p style=\"margin-left:11%; margin-top: 1em\">PAM_USER_UNKNOWN<\/p>\n<p style=\"margin-left:17%;\">User was not found.<\/p>\n<h2>EXAMPLES <a name=\"EXAMPLES\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">Skip remaining modules if the user is a system user:<\/p>\n<p style=\"margin-left:17%; margin-top: 1em\">account sufficient pam_usertype.so issystem<\/p>\n<h2>SEE ALSO <a name=\"SEE ALSO\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\"><b>login.defs<\/b>(5), <b>pam<\/b>(8)<\/p>\n<h2>AUTHOR <a name=\"AUTHOR\"><\/a> <\/h2>\n<p style=\"margin-left:11%; margin-top: 1em\">Pavel B\u00c5ezina <pbrezina@redhat.com><\/p>\n<hr>\n","protected":false},"excerpt":{"rendered":"<p>  pam_usertype \u2212 check if the authenticated user is a system or regular account <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[5,52,4,828],"class_list":["post-3719","post","type-post","status-publish","format-standard","hentry","category-8-administracion-del-sistema","tag-5","tag-administracion","tag-man8","tag-pam_usertype"],"gutentor_comment":0,"_links":{"self":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts\/3719","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/comments?post=3719"}],"version-history":[{"count":0,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/posts\/3719\/revisions"}],"wp:attachment":[{"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/media?parent=3719"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/categories?post=3719"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lode.uno\/linux-man\/wp-json\/wp\/v2\/tags?post=3719"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}