Man Linux: Main Page and Category List

NAME

       pam_pkcs11 - PAM Authentication Module for PKCS#11 token libraries

SYNOPSIS

       pam_pkcs11.so [debug] [configfile=<configfile>]

DESCRIPTION

       This  Linux-PAM  login  module  allows  a  X.509 certificate based user
       login. The certificate  and  its  dedicated  private  key  are  thereby
       accessed   by  means  of  an  appropriate  PKCS  #11  module.  For  the
       verification of the users’ certificates, locally stored CA certificates
       as well as either online or locally accessible CRLs are used.

CONFIGURATION

       The   program  that  needs  a  PAM  service  should  be  configured  in
       /etc/pam.conf or /etc/pam.d/<servicename>.

       pam_pkcs11 can be used in the <auth> PAM chain.

       For details on how to configure PAM services, see the PAM documentation
       for  your system. This manual does not cover PAM configuration details.
       The existing PAM service definitions for  other  applications  on  your
       system  is  also  a  good source for examples on how to configure a PAM
       service.

FILES

       /etc/pam_pkcs11/pam_pkcs11.conf
       /usr/lib/pam_pkcs11/*_mapper.so

AUTHOR

       Original PAM-pkcs11  was  written  by  Mario  Strasser  <mast@gmx.net>.
       Newer versions are from Juan Antonio Martinez <jonsito@teleline.es>.

REPORTING BUGS

       Report bugs ideas, comments, bug-fixes and so to: Juan Antonio Martinez
       <jonsito@teleline.es>

SEE ALSO

       pam(8),   pam_pkcs11.conf(5),   PAM   Systems   Administrator    Guide,
       README.mappers file, PAM-PKCS#11 User Manual.