Troubleshooting external authentication
Troubleshooting auth modules is a little different from other types of module, because what you're testing is the ability to access a command, not the functionality of the resulting command. This means that the command that you choose to execute should be one that is already known to work, such as test.ping.
Setting auth parameters
Before you can use an auth module, you need to enable it in the master configuration file. Multiple auth modules can be configured, using the external_auth directive:
external_auth:
pam:
moe:
- .*
- '@runner'
- '@wheel'
larry:
- test.*
- disk.*
- network.*
- '@runner'
- '@wheel'
webauth:
shemp:
- test.*
- network.*
- '@runner'
- '@wheel'In this example, we have three users set, between two different auth modules. The moe and larry users are set to use the pam module, and the...
