Control the Login Process

provides two types of login protection: by terminal, and by application. Using the TERMINAL class, you can establish which users can log in from which terminals or hosts.
capamsc141
PAM Server Control
provides two types of login protection: by terminal, and by application. Using the TERMINAL class, you can establish which users can log in from which terminals or hosts.
For more information about the TERMINAL class, see the
Reference Guide
.
You can also control which user or group can log in using a certain login application such as Telnet, ftp, and rlogin with the LOGINAPPL class. By establishing the access rules of the class, you define specific rules for each login application. For instance, you can define rules that enforce the following conditions:
  • Permit all users to ftp to your host
  • Permit a limited number of users to Telnet to your system
  • Permit no one to rlogin to the system
Each record in the LOGINAPPL class defines access rules for a specific login application.