Man page or keyword search:   man All Sections 1 - General Commands 2 - System Calls 3 - Subroutines, Functions 4 - Special Files 5 - File Formats 6 - Games and Screensavers 7 - Macros and Conventions 8 - Maintenence Commands 9 - Kernel Interface New Commands Server 4.4BSD AIX Alpinelinux Archlinux Aros BSDOS BSDi Bifrost CentOS Cygwin Darwin Debian DigitalUNIX DragonFly ElementaryOS Fedora FreeBSD Gentoo GhostBSD HP-UX Haiku Hurd IRIX Inferno JazzOS Kali Knoppix LinuxMint MacOSX Mageia Mandriva Manjaro Minix MirBSD NeXTSTEP NetBSD OPENSTEP OSF1 OpenBSD OpenDarwin OpenIndiana OpenMandriva OpenServer OpenSuSE OpenVMS Oracle PC-BSD Peanut Pidora Plan9 QNX Raspbian RedHat Scientific Slackware SmartOS Solaris SuSE SunOS Syllable Tru64 UNIXv7 Ubuntu Ultrix UnixWare Xenix YellowDog aLinux   31559 pages apropos Keyword Search (all sections) Output format html ascii pdf view pdf save postscript

pam_sm_authenticate(3)					pam_sm_authenticate(3)

NAME
       pam_sm_authenticate - Service provider implementation for pam_authenti‐
       cate

SYNOPSIS
       cc [ flag ... ] file ...	 -lpam [ library ... ]

       #include <security/pam_appl.h>
       #include <security/pam_modules.h>

       int pam_sm_authenticate(pam_handle_t *pamh, int flags, int argc,	 const
       char **argv);

DESCRIPTION
       In  response  to a call to pam_authenticate(3), the PAM framework calls
       pam_sm_authenticate() from the modules listed in the pam.conf(4)	 file.
       The  authentication  provider  supplies	the back-end functionality for
       this interface function.

       The function, pam_sm_authenticate(), is called to verify	 the  identity
       of  the current user.  The user is usually required to enter a password
       or similar  authentication  token  depending  upon  the	authentication
       scheme configured within the system.  The user in question is specified
       by a prior call to pam_start(), and is referenced by the authentication
       handle, pamh.

       The following flag may be passed in to pam_sm_authenticate():

	      PAM_SILENT			 The   authentication  service
						 should not generate any  mes‐
						 sages

	      PAM_DISALLOW_NULL_AUTHTOK		 The   authentication  service
						 should return	PAM_AUTH_ERROR
						 if   the   user  has  a  null
						 authentication token

       The argc argument represents the number of service  options  passed  in
       from  the  configuration	 file pam.conf(4).  argv specifies the service
       options, which are interpreted and processed by the authentication ser‐
       vice.   Please  refer  to the specific module man pages for the various
       available options.  If any unknown option  is  passed  in,  the	module
       should log the error and ignore the option.

NOTES
       Modules	should not retry the authentication in the event of a failure.
       Applications should handle authentication retries and  maintaining  the
       retry  count.  However modules may save the authentication status (suc‐
       cess or failure) using the pam_set_data(3) function.

RETURN VALUES
       Upon successful completion, PAM_SUCCESS must be returned.  In addition,
       the following values may be returned:

	      PAM_MAXTRIES		   Maximum  number  of	authentication
					   attempts exceeded

	      PAM_AUTH_ERR		   Authentication failure

	      PAM_CRED_INSUFFICIENT	   Can not access authentication  data
					   due to insufficient credentials

	      PAM_AUTHINFO_UNAVAIL	   Underlying  authentication  service
					   can	not  retrieve	authentication
					   information

	      PAM_USER_UNKNOWN		   User	  not	known	to  underlying
					   authentication module

	      PAM_IGNORE		   Ignore  underlying	authentication
					   module  regardless  of  whether the
					   control flag is required,  optional
					   or sufficient

SEE ALSO
       pam(3), pam_authenticate(3), pam.conf(4)

				19 October 1995		pam_sm_authenticate(3)

Vote for polarhome