To install the UNIX security realm
|
Administrators must log in as root.
|
1. Move to the following directory:
installdir\bin
2. Make sure the correct file owner and permissions are assigned to the verify file:
chown root verify
chmod +xs verify
◦ For Solaris, add the following lines to the //pam.conf file:
# Setup for authentication on Solaris machines
#
mksUnixRealm auth requisite pam_authtok_get.so.1
mksUnixRealm auth required pam_unix_cred.so.1
mksUnixRealm auth required pam_unix.auth.so.1
◦ For Red Hat Linux, create a file //pam.d/mksunixrealm containing the following:
#%PAM-1.0
#
auth required /lib/security/pam_stack.so service=system-auth
account required /lib/security/pam_stack.so service=system-auth
password required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_stack.so service=system-auth
◦ For SuSE Linux, create a file //pam.d/mksunixrealm containing the following:
#%PAM-1.0
#
auth required pam_unix2.so
account required pam_unix2.so
password required pam_unix2.so
session required pam_unix2.so
3. Restart Integrity Lifecycle Manager Agent and log in using UNIX user IDs.
|
If you are administering the UNIX security realm under Solaris or Linux, the verify program only needs to have setuid applied if shadow passwords are used.
|