Source string Read only

(itstool) path: glossentry/glossterm
Context English State
The user or entity requesting authentication.
The user or entity who has the privileges necessary to verify the applicant's credentials and the authority to grant or deny the request.
A sequence of modules that will be invoked in response to a PAM request. The chain includes information about the order in which to invoke the modules, what arguments to pass to them, and how to interpret the results.
The application responsible for initiating an authentication request on behalf of the applicant and for obtaining the necessary authentication information from him.
One of the four basic groups of functionality provided by PAM: authentication, account management, session management and authentication token update.
A collection of one or more related functions implementing a particular authentication facility, gathered into a single (normally dynamically loadable) binary file and identified by a single name.
The complete set of configuration statements describing how to handle PAM requests for a particular service. A policy normally consists of four chains, one for each facility, though some services do not use all four facilities.
The application acting on behalf of the arbitrator to converse with the client, retrieve authentication information, verify the applicant's credentials and grant or deny requests.
A class of servers providing similar or related functionality and requiring similar authentication. PAM policies are defined on a per-service basis, so all servers that claim the same service name will be subject to the same policy.
The context within which service is rendered to the applicant by the server. One of PAM's four facilities, session management, is concerned exclusively with setting up and tearing down this context.
A chunk of information associated with the account, such as a password or passphrase, which the applicant must provide to prove his identity.
A sequence of requests from the same applicant to the same instance of the same server, beginning with authentication and session set-up and ending with session tear-down.
Usage Examples
This section aims to illustrate the meanings of some of the terms defined above by way of a handful of simple examples.
Client and Server Are One
This simple example shows <literal>alice</literal> <citerefentry><refentrytitle>su</refentrytitle><manvolnum>1</manvolnum></citerefentry>'ing to <literal>root</literal>.
<prompt>%</prompt> <userinput>whoami</userinput>
<prompt>%</prompt> <userinput>ls -l `which su`</userinput>
-r-sr-xr-x 1 root wheel 10744 Dec 6 19:06 /usr/bin/su
<prompt>%</prompt> <userinput>su -</userinput>
Password: <userinput>xi3kiune</userinput>
<prompt>#</prompt> whoami
The applicant is <literal>alice</literal>.
The account is <literal>root</literal>.
The <citerefentry><refentrytitle>su</refentrytitle><manvolnum>1</manvolnum></citerefentry> process is both client and server.


No matching activity found.

Browse all component changes


English English
No related strings found in the glossary.

Source information

Source string comment
(itstool) path: glossentry/glossterm
Source string location
String age
a year ago
Source string age
a year ago
Translation file
articles/pam.pot, string 38