ootp/doc/pam_otp.1

107 lines
3 KiB
Groff
Raw Normal View History

2017-01-03 11:10:10 +00:00
...\" $Header: /usr/src/docbook-to-man/cmd/RCS/docbook-to-man.sh,v 1.3 1996/06/17 03:36:49 fld Exp $
...\"
...\" transcript compatibility for postscript use.
...\"
...\" synopsis: .P! <file.ps>
...\"
.de P!
\\&.
.fl \" force out current output buffer
\\!%PB
\\!/showpage{}def
...\" the following is from Ken Flowers -- it prevents dictionary overflows
\\!/tempdict 200 dict def tempdict begin
.fl \" prolog
.sy cat \\$1\" bring in postscript file
...\" the following line matches the tempdict above
\\!end % tempdict %
\\!PE
\\!.
.sp \\$2u \" move below the image
..
.de pF
.ie \\*(f1 .ds f1 \\n(.f
.el .ie \\*(f2 .ds f2 \\n(.f
.el .ie \\*(f3 .ds f3 \\n(.f
.el .ie \\*(f4 .ds f4 \\n(.f
.el .tm ? font overflow
.ft \\$1
..
.de fP
.ie !\\*(f4 \{\
. ft \\*(f4
. ds f4\"
' br \}
.el .ie !\\*(f3 \{\
. ft \\*(f3
. ds f3\"
' br \}
.el .ie !\\*(f2 \{\
. ft \\*(f2
. ds f2\"
' br \}
.el .ie !\\*(f1 \{\
. ft \\*(f1
. ds f1\"
' br \}
.el .tm ? font underflow
..
.ds f1\"
.ds f2\"
.ds f3\"
.ds f4\"
.ta 8n 16n 24n 32n 40n 48n 56n 64n 72n
.TH "\fBpam_otp\fP" "8"
.SH "NAME"
\fBpam_otp\fP \(em PAM OTP module
.SH "SYNOPSIS"
.PP
[\fIservice-name\fP] auth \fIcontrol-flag\fP pam_otp [\fIoptions\fP]
.SH "DESCRIPTION"
.PP
The OTP authentication service module for PAM, pam_otp, provides
functionality for only PAM authentication\&. Users are optionally
sent a challenge and then authenticated via the OTP database\&.
.SH "OPTIONS"
.IP "\fIexpose_account\fP" 10
Enable logging output with username and challenge response\&.
.IP "\fIallow_inactive\fP" 10
Users set to a status of inactive will return PAM_SUCCESS when
the allow_inactive option is set\&. The default behavior for inactive users
is to return PAM_AUTH_ERR\&.
.IP "\fIdisplay_count\fP" 10
The HOTP challenge will include the current count for the user when
the display_count option is set\&. The default behavior will not display
the count unless the user record flags field has OTP_USER_FLAGS_DSPCNT set\&.
.IP "\fIrequire_db_entry\fP" 10
A user not in the OTP database will be denied access with the
2017-01-03 11:16:53 +00:00
require_db_entry option is set\&. This option is set by default\&.
require_db_entry and allow_unknown user set the same flag and are
mutually exclusive\&.
.IP "\fIallow_unknown_user\fP" 10
A user not in the OTP database will be allowed access with the
allow_unknown_user option set\&. This option is disabled by default\&.
require_db_entry and allow_unknown user set the same flag and are
mutually exclusive\&.
2017-01-03 11:10:10 +00:00
.IP "\fIotpdb=\fP\fBalternate_otpdb\fP" 10
\fBalternate_otpdb\fP is used as the OTP database\&.
2017-01-03 11:16:53 +00:00
.IP "\fIservice=\fP\fBservice_name\fP" 10
Service name for use with send-token option\&.
2017-01-03 11:14:13 +00:00
.IP "\fIwindow=window\fP" 10
Set OTP challenge window\&.
2017-01-03 11:10:10 +00:00
.SH "AUTHOR"
.PP
Mark Fullmer maf@splintered\&.net
.SH "SEE ALSO"
.PP
\fBotp-sca\fP(1)
\fBotp-sct\fP(1)
\fBotp-control\fP(1)
\fBhtsoft-downloader\fP(1)
\fBotp-openvpn-plugin\fP(1)
\fBurd\fP(1)
\fBbcload\fP(1)
\fBpam\fP(8)
spyrus-par2(7)
2017-01-03 11:16:53 +00:00
...\" created by instant / docbook-to-man, Sun 15 May 2011, 23:57