Re: UNIX: How to determine the authentication domain of a user ?
- From: "C." <colin.mckinnon@xxxxxxxxx>
- Date: Fri, 8 Feb 2008 05:04:34 -0800 (PST)
On 7 Feb, 03:22, "vasantha.prabhu" <gaurab.p...@xxxxxxxxx> wrote:
Hi,
Suppose if there are two user accounts with the same name (vprabhu on
local (i.e. files) as well as NIS), then /etc/nsswitch.conf determines
which domain to authenticate against. However, depending on the OS
(for example authconfig settings in linux) can alter the nsswitch.conf
procedure.
For example,
cat /etc/nsswitch.conf|grep passwd
passwd: nis files
then if vprabhu logs in it will be authenticated against NIS. However,
if authconfig settings are "Local authorization is sufficient" is ON,
it will authenticate against FILES.
Now, given this situation, how do we reliably know against which
domain (local/NIS) a user has authenticated against while logging in ?
If there is a POSIX API or portable API or even OS commands across
major UNIX versions please let us know.
Thanks,
Gaurab
You don't. You'd need to rewrite the pam modules in your chain to set
a flag somewhere but its an ugly way to solve a silly problem
C.
.
- Follow-Ups:
- Re: UNIX: How to determine the authentication domain of a user ?
- From: Chris Cox
- Re: UNIX: How to determine the authentication domain of a user ?
- References:
- UNIX: How to determine the authentication domain of a user ?
- From: vasantha.prabhu
- UNIX: How to determine the authentication domain of a user ?
- Prev by Date: Can a simple user can enforce his/her security constraints in SELINUX???
- Next by Date: Re: UNIX: How to determine the authentication domain of a user ?
- Previous by thread: UNIX: How to determine the authentication domain of a user ?
- Next by thread: Re: UNIX: How to determine the authentication domain of a user ?
- Index(es):
Relevant Pages
|
