...
This script will perform a authentication for the user credentials passed in the parameters.
Result: 0 for successful authentication
| Parameter | Description | Default | Mandatory |
|---|---|---|---|
| userId | This is the userID for the account to validate in the Directory Server. This will be in an account specified by $SSHLDAP_USERS_TENANT_DN. | The "login" attribute of the current user's .netrc file. | No |
| userPasswd | This is the password for the userID. | The "password" attribute of the current user's .netrc file. | No |
...
This script will perform authorization of the given user against the current host.
Result: 0 for successful authorization
| Parameter | Description | Default | Mandatory |
|---|---|---|---|
| userId (if called directly) | This is the userID for the account to validate in the Directory Server. This will be in an account specified by $SSHLDAP_USERS_TENANT_DN. | N/A | No |
| ${PAM_USER} (if called by PAM) | See above | The "machine" attribute of theĀ /etc/${ziD}/sshldap/.netrc file. | No |
...
This script returns the sshpub key from the Directory Server for the given user.
Result: All SSH pubkeys on a separate line for each key.
| Parameter | Description | Default | Mandatory |
|---|---|---|---|
| userId (if called directly) | This is the userID for the account to retrieve the ssh pubkey from the Directory Server. | N/A | No |
...