authconfig

 


AUTHCONFIG(8)                                       AUTHCONFIG(8)



NAME
       authconfig - an interface for configuring system authenti­
       cation resources

SYNOPSIS
       authconfig  [--back]  [--test]  [--nostart]  [--kickstart]
       [--probe]  [--enablecache]  [--disablecache]  [--enablenis
       [--nisdomain   <domain>]   [--nisserver   <nisserver[,nis­
       server...]>] ] [--disablenis] [--enableshadow] [--disable­
       shadow] [--enablemd5]  ]  [--disablemd5]  ]  [--enableldap
       [--enableldapauth]     [--enableldapssl]     [--ldapserver
       <ldapserver>] [--ldapbasedn  <basedn>]  ]  [--disableldap]
       [--disableldapauth]  [--enablekrb5 [ --krb5realm <realm> ]
       [--krb5kdc   <hostname[,hostname,...]>]    [--disablekrb5]
       [--krb5adminserver <hostname[,hostname,...]>] ] [--enable­
       hesiod [--hesiodlhs <lhs>] [--hesiodrhs <rhs>]  ]  [--dis­
       ablehesiod]   [--enablesmb   [--smbworkgroup  <workgroup>]
       [--smbservers <server[,server]>]]

DESCRIPTION
       authconfig  provides  a  simple  method   of   configuring
       /etc/sysconfig/network   to   handle   NIS,   as  well  as
       /etc/passwd and /etc/shadow, the  files  used  for  shadow
       password   support.   Basic  LDAP,  Kerberos  5,  and  SMB
       (authentication) client configuration is also provided.

       The authconfig window contains a Cancel button by default.
       If  --back is specified at run time, a Back button is pre­
       sented instead. If --test is specified, authconfig can  be
       run  by  users  other  then  root,  and  any configuration
       changes are not saved. If --nostart is specified (which is
       what the install program does), ypbind will not be started
       or stopped immediately following  program  execution,  but
       only enabled to start or stop at boot time. if --kickstart
       is specified, no interactive screens will  be  seen.   The
       values the program will use will be those specified by the
       other options (--enablemd5, --usehadow, etc.).

       The --enablenis, --enableldap, and --enablehesiod  options
       are   used  to  configure  user  information  services  in
       /etc/nsswitch.conf, the --enablecache option  is  used  to
       configure naming services caching, and the --enableshadow,
       --enablemd5,    --enableldapauth,     --enablekrb5     and
       --enablesmb  options  are used to configure authentication
       functions via /etc/pam.d/system-auth.  Each --enable has a
       matching  --disable option that disables the service if it
       is already enabled.

       The --probe flag instructs authconfig to use DNS and other
       means  to  guess at configuration information for the cur­
       rent host, print its guesses to standard output, and exit.

       The default in kickstart mode (i.e. without any additional
       options) is to not change the current settings.


RETURN CODES
       authconfig returns 0 on success, 2 on error, and 1 if  the
       user  cancelled the program (by using either the Cancel or
       Back button).


FILES
       /etc/sysconfig/authconfig
              Used to  track  whether  or  not  particular
              authentication mechanisms are enabled.  Cur­
              rently includes variables  named  USESHADOW,
              USEMD5,   USEKERBEROS,  USELDAPAUTH,  USESM­
              BAUTH, USEHESIOD, USENIS, USELDAP.
       /etc/passwd,
              Used for shadow password support.
       /etc/yp.conf
              Configuration file for NIS support.
       /etc/sysconfig/network
              Another configuration file for NIS  support.
       /etc/ldap.conf
              /etc/openldap/ldap.conf  Used  to  configure
              LDAP (and OpenLDAP, respectively).
       /etc/krb5.conf
              Used to configure Kerberos 5.
       /etc/krb.conf
              Used to configure Kerberos IV  (write-only).
       /etc/hesiod.conf
              Used to configure Hesiod.
       /etc/pam_smb.conf
              Used to configure SMB authentication.

       /etc/nsswitch.conf
              Used  to  configure  user information
              services.
       /etc/pam.d/system-auth
              Used to configure PAM for system ser­
              vices via pam_stack(8).


SEE ALSO
       passwd(5),   shadow(5),  pwconv(1),  domain­
       name(1), ypbind(8), nsswitch.conf(5)


AUTHORS
       Nalin Dahyabhai <nalin@redhat.com>, Preston Brown <pbrown@redhat.com>, Matt Wilson <msw@redhat.com>



Red Hat, Inc.            Mon 30 July 2001           AUTHCONFIG(8)