You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I was wondering if it's possible to retrieve an LDAP specific attribute and make it available to a further pam module.
It could be useful if we need to check for a specific value before accepting the authentication for example. In my mind this verification could be done in a custom pam_script or pam_exec.
The text was updated successfully, but these errors were encountered:
This is really similar to the question I came here to ask, which is "can we support U2F public keys?" ... this is actually a more versatile solution, as if you can present other LDAP attributes to PAM then you can basically support U2F devices right there.
In theory it would be possible for a PAM module to set environment variables with pam_putenv() but I'm not 100% sure the values can be passed through to different PAM modules. This is currently not implemented in nss-pam-ldapd though.
I was wondering if it's possible to retrieve an LDAP specific attribute and make it available to a further pam module.
It could be useful if we need to check for a specific value before accepting the authentication for example. In my mind this verification could be done in a custom pam_script or pam_exec.
The text was updated successfully, but these errors were encountered: