This section describes the PAM application programming interface (API) and the PAM service provider interface (SPI). Also included are procedures on how to effectively write PAM modules when using the Solaris 9 OE. Before we discuss the PAM API and SPI, let us take a brief look at the PAM components:
PAM API (
pam(3PAM)) used by applications to perform authentication and authentication token (password) changes.
PAM framework used to export the API.
PAM SPI (
pam_sm(3PAM)) used by the PAM framework to call PAM Service Modules.
PAM service modules (
pam_*(5)) used to export the PAM SPI.
By writing these PAM service modules, it is possible to extend the capability of the Solaris 9 OE authentication mechanisms in ...