...\" $Header: /usr/src/docbook-to-man/cmd/RCS/docbook-to-man.sh,v 1.3 1996/06/17 03:36:49 fld Exp $ ...\" ...\" transcript compatibility for postscript use. ...\" ...\" synopsis: .P! ...\" .de P! \\&. .fl \" force out current output buffer \\!%PB \\!/showpage{}def ...\" the following is from Ken Flowers -- it prevents dictionary overflows \\!/tempdict 200 dict def tempdict begin .fl \" prolog .sy cat \\$1\" bring in postscript file ...\" the following line matches the tempdict above \\!end % tempdict % \\!PE \\!. .sp \\$2u \" move below the image .. .de pF .ie \\*(f1 .ds f1 \\n(.f .el .ie \\*(f2 .ds f2 \\n(.f .el .ie \\*(f3 .ds f3 \\n(.f .el .ie \\*(f4 .ds f4 \\n(.f .el .tm ? font overflow .ft \\$1 .. .de fP .ie !\\*(f4 \{\ . ft \\*(f4 . ds f4\" ' br \} .el .ie !\\*(f3 \{\ . ft \\*(f3 . ds f3\" ' br \} .el .ie !\\*(f2 \{\ . ft \\*(f2 . ds f2\" ' br \} .el .ie !\\*(f1 \{\ . ft \\*(f1 . ds f1\" ' br \} .el .tm ? font underflow .. .ds f1\" .ds f2\" .ds f3\" .ds f4\" .ta 8n 16n 24n 32n 40n 48n 56n 64n 72n .TH "\fBpam_otp\fP" "8" .SH "NAME" \fBpam_otp\fP \(em PAM OTP module .SH "SYNOPSIS" .PP [\fIservice-name\fP] auth \fIcontrol-flag\fP pam_otp [\fIoptions\fP] .SH "DESCRIPTION" .PP The OTP authentication service module for PAM, pam_otp, provides functionality for only PAM authentication\&. Users are optionally sent a challenge and then authenticated via the OTP database\&. .SH "OPTIONS" .IP "\fIexpose_account\fP" 10 Enable logging output with username and challenge response\&. .IP "\fIallow_inactive\fP" 10 Users set to a status of inactive will return PAM_SUCCESS when the allow_inactive option is set\&. The default behavior for inactive users is to return PAM_AUTH_ERR\&. .IP "\fIdisplay_count\fP" 10 The HOTP challenge will include the current count for the user when the display_count option is set\&. The default behavior will not display the count unless the user record flags field has OTP_USER_FLAGS_DSPCNT set\&. .IP "\fIrequire_db_entry\fP" 10 A user not in the OTP database will be denied access with the require_db_entry option is set\&. This option is set by default\&. require_db_entry and allow_unknown user set the same flag and are mutually exclusive\&. .IP "\fIallow_unknown_user\fP" 10 A user not in the OTP database will be allowed access with the allow_unknown_user option set\&. This option is disabled by default\&. require_db_entry and allow_unknown user set the same flag and are mutually exclusive\&. .IP "\fIotpdb=\fP\fBalternate_otpdb\fP" 10 \fBalternate_otpdb\fP is used as the OTP database\&. .IP "\fIservice=\fP\fBservice_name\fP" 10 Service name for use with send-token option\&. .IP "\fIwindow=window\fP" 10 Set OTP challenge window\&. .SH "AUTHOR" .PP Mark Fullmer maf@splintered\&.net .SH "SEE ALSO" .PP \fBotp-sca\fP(1) \fBotp-sct\fP(1) \fBotp-control\fP(1) \fBhtsoft-downloader\fP(1) \fBotp-openvpn-plugin\fP(1) \fBurd\fP(1) \fBbcload\fP(1) \fBpam\fP(8) spyrus-par2(7) ...\" created by instant / docbook-to-man, Sun 15 May 2011, 23:57