Common policy for authentication and user login.
Delete pam PID files.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Run unix_chkpwd to check a password.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Execute a login_program in the target domain.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
target_domain | The type of the login_program process. | No |
Execute pam programs in the pam domain.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Execute utempter programs in the utempter domain.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Do not audit attempts to read the shadow password file (/etc/shadow).
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the domain to not audit. | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Execute the pam program.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Use the login program as an entry point program.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of process using the login program as entry point. | No |
Manage all files on the filesystem, except the shadow passwords and listed exceptions.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the domain perfoming this action. | No |
exception_types | The types to be excluded. Each type or attribute must be negated by the caller. | yes |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Read the shadow passwords file (/etc/shadow)
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
Relabel all files on the filesystem, except the shadow passwords and listed exceptions.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the domain perfoming this action. | No |
exception_types | The types to be excluded. Each type or attribute must be negated by the caller. | yes |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Execute pam programs in the PAM domain.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
role | The role to allow the PAM domain. | No |
terminal | The type of the terminal allow the PAM domain to use. | No |
Execute utempter programs in the utempter domain.
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
role | The role to allow the utempter domain. | No |
terminal | The type of the terminal allow the utempter domain to use. | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Summary is missing!
Parameter: | Description: | Optional: |
---|---|---|
? | Parameter descriptions are missing! | No |
Read and write the shadow password file (/etc/shadow).
Parameter: | Description: | Optional: |
---|---|---|
domain | The type of the process performing this action. | No |
The per user domain template for the authlogin module.
This template creates a derived domain which is allowed to authenticate users by using PAM unix_chkpwd support. This domain will be used by any programs running in the user domain which use PAM to authenticate.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
Parameter: | Description: | Optional: |
---|---|---|
userdomain_prefix | The prefix of the user domain (e.g., user is the prefix for user_t). | No |