NAME
pam_acct_mgmt
- perform PAM account validation procedures
LIBRARY
SYNOPSIS
int
pam_acct_mgmt(pam_handle_t *pamh, int flags)
DESCRIPTION
The
pam_acct_mgmt
function verifies and enforces account restrictions
after the user has been authenticated.
The
flags
argument is the binary or of zero or more of the following
values:
PAM_SILENT-
Do not emit any messages.
PAM_DISALLOW_NULL_AUTHTOK-
Fail if the user's authentication token is null.
If any other bits are set,
pam_acct_mgmt
will return
PAM_SYMBOL_ERR.
RETURN VALUES
The
pam_acct_mgmt
function returns one of the following values:
- [
PAM_ABORT] -
General failure.
- [
PAM_ACCT_EXPIRED] -
User account has expired.
- [
PAM_AUTH_ERR] -
Authentication error.
- [
PAM_BUF_ERR] -
Memory buffer error.
- [
PAM_CONV_ERR] -
Conversation failure.
- [
PAM_NEW_AUTHTOK_REQD] -
New authentication token required.
- [
PAM_PERM_DENIED] -
Permission denied.
- [
PAM_SERVICE_ERR] -
Error in service module.
- [
PAM_SYSTEM_ERR] -
System error.
- [
PAM_USER_UNKNOWN] -
Unknown user.
SEE ALSO
pam(3),
pam_strerror(3)
STANDARDS
AUTHORS
The
pam_acct_mgmt
function and this manual page were developed for the
FreeBSD
Project by ThinkSec AS and Network Associates Laboratories, the
Security Research Division of Network Associates, Inc. under
DARPA/SPAWAR contract N66001-01-C-8035
(``CBOSS''),
as part of the DARPA CHATS research program.