The pam_setcred() function is used to establish, modify, or delete user credentials. It is typically called after the user has been authenticated and after a session has been opened.
See pam_authenticate(3PAM), pam_acct_mgmt(3PAM), and pam_open_session(3PAM).
The user is specified by a prior call to pam_start() or pam_set_item(), and is referenced by the authentication handle, pamh. The following
flags may be set in the flags field. Note that the first four flags are mutually exclusive:
-
PAM_ESTABLISH_CRED
- Set user credentials for an authentication service.
-
PAM_DELETE_CRED
- Delete user credentials associated with an authentication service.
-
PAM_REINITIALIZE_CRED
- Reinitialize user credentials.
-
PAM_REFRESH_CRED
- Extend lifetime of user credentials.
-
PAM_SILENT
- Authentication service should not generate any messages.
If no flag is set, PAM_ESTABLISH_CRED is used as the default.
|