PAM_ROOTOK(8) BSD System Manager's Manual PAM_ROOTOK(8)NAME
pam_rootok -- RootOK PAM module
SYNOPSIS
[service-name] module-type control-flag pam_rootok [options]
DESCRIPTION
The RootOK authentication service module for PAM provides functionality for only one PAM category: authentication. In terms of the
module-type parameter, this is the ``auth'' feature. It also provides a null function for session management.
RootOK Authentication Module
The RootOK authentication component (pam_sm_authenticate()), always returns success for the superuser; i.e., if getuid(2) returns 0.
The following options may be passed to the authentication module:
debug syslog(3) debugging information at LOG_DEBUG level.
no_warn suppress warning messages to the user. These messages include reasons why the user's authentication attempt was declined.
SEE ALSO getuid(2), pam.conf(5), pam(8)BSD July 8, 2001 BSD
Check Out this Related Man Page
PAM_SECURETTY(8) BSD System Manager's Manual PAM_SECURETTY(8)NAME
pam_securetty -- SecureTTY PAM module
SYNOPSIS
[service-name] module-type control-flag pam_securetty [options]
DESCRIPTION
The SecureTTY service module for PAM, pam_securetty provides functionality for only one PAM category: account management. In terms of the
module-type parameter, this is the ``account'' feature. It also provides null functions for authentication and session management.
SecureTTY Account Management Module
The SecureTTY account management component (pam_sm_acct_mgmt()), returns failure if the user is attempting to authenticate as superuser, and
the process is attached to an insecure TTY. In all other cases, the module returns success.
A TTY is considered secure if it is listed in /etc/ttys and has the TTY_SECURE flag set.
The following options may be passed to the authentication module:
debug syslog(3) debugging information at LOG_DEBUG level.
no_warn suppress warning messages to the user. These messages include reasons why the user's authentication attempt was declined.
SEE ALSO getttynam(3), syslog(3), pam.conf(5), ttys(5), pam(8)BSD July 8, 2001 BSD
Hello, I can ssh as root directly, but when login as normal user, I cant su to root:
user@server:~% su
Password:
and in the /var/log/messages:
session opened for user root by user(uid=501)
session closed for user root
Im sure the root password is correct, any pointer? (14 Replies)
Hi,
I am not able to login on my linux server through my some user :-
when i login through root and try to login it gives the following error :-
#su - oracle
su: incorrect password
i have check the entry of oracle user is there in /etc/passwd file also... (11 Replies)
Hi,
I find there is some customized linux with application.
When I use login account root and type the password.
It is not allow to login.
But if I login with specified user and password.
Then I use command "su - " and type root passwd.
It allow you to switch to "root" account .
Or if i... (14 Replies)
Hello.
I have a RHEL 7.2 where a regular user can't make a "su -" to reach root account:
server532:t711740:/$ id
uid=75456(t711740) gid=10000(personales) groups=10000(personales),10(wheel)
tehrh532:t711740:/$ su -
Password:
su: Permission denied
But can make "sudo su -"... (2 Replies)