PAM_EXECSection: Linux\-PAM Manual (8)
Index Return to Main Contents
pam_exec - PAM module which calls an external command
- pam_exec.so [debug] [expose_authtok] [seteuid] [quiet] [log=file] command [...]
The child's environment is set to the current PAM environment list, as returned by pam_getenvlist(3) In addition, the following PAM items are exported as environment variables: PAM_RHOST, PAM_RUSER, PAM_SERVICE, PAM_TTY, PAM_USER and PAM_TYPE, which contains one of the module types: account, auth, password, open_session and close_session.
- Print debug information.
- During authentication the calling command can read the password from stdin(3).
- The output of the command is appended to FCfileF
- Per default pam_exec.so will echo the exit status of the external command if it fails. Specifying this option will suppress the message.
- Per default pam_exec.so will execute the external command with the real user ID of the calling process. Specifying this option means the command is run with the effective user ID.
MODULE TYPES PROVIDED
- The external command was run successfully.
- No argument or a wrong number of arguments were given.
- A system error occurred or the command to execute failed.
pam_setcred was called, which does not execute the command.
Add the following line to FC/etc/pam.d/passwdF to rebuild the NIS database after each local password change:
passwd optional pam_exec.so seteuid make -C /var/yp
This will execute the command
make -C /var/yp
pam_exec was written by Thorsten Kukuk <firstname.lastname@example.org>.
This document was created by man2html, using the manual pages.
Time: 05:34:28 GMT, December 24, 2015