PAM_AUTHENTICATE(3) | Library Functions Manual | PAM_AUTHENTICATE(3) |
pam_authenticate
—
perform authentication within the PAM framework
Pluggable Authentication Module Library (libpam, -lpam)
#include
<sys/types.h>
#include
<security/pam_appl.h>
int
pam_authenticate
(pam_handle_t
*pamh, int
flags);
The pam_authenticate
function attempts to
authenticate the user associated with the pam context specified by the
pamh argument.
The application is free to call
pam_authenticate
as many times as it wishes, but
some modules may maintain an internal retry counter and return
PAM_MAXTRIES
when it exceeds some preset or
hardcoded limit.
The flags argument is the binary or of zero or more of the following values:
PAM_SILENT
PAM_DISALLOW_NULL_AUTHTOK
If any other bits are set,
pam_authenticate
will return
PAM_SYMBOL_ERR
.
The pam_authenticate
function returns one
of the following values:
PAM_ABORT
]PAM_AUTHINFO_UNAVAIL
]PAM_AUTH_ERR
]PAM_BUF_ERR
]PAM_CONV_ERR
]PAM_CRED_INSUFFICIENT
]PAM_MAXTRIES
]PAM_PERM_DENIED
]PAM_SERVICE_ERR
]PAM_SYMBOL_ERR
]PAM_SYSTEM_ERR
]PAM_USER_UNKNOWN
]X/Open Single Sign-On Service (XSSO) - Pluggable Authentication Modules, June 1997.
The pam_authenticate
function and this
manual page were developed for the FreeBSD Project
by ThinkSec AS and Network Associates Laboratories, the Security Research
Division of Network Associates, Inc. under DARPA/SPAWAR contract
N66001-01-C-8035 (“CBOSS”), as part of the DARPA CHATS
research program.
December 21, 2007 | Mac OS X 12 |