From owner-freebsd-hackers@FreeBSD.ORG Mon Dec 15 14:15:20 2003 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3113E16A4CE for ; Mon, 15 Dec 2003 14:15:20 -0800 (PST) Received: from mail.sandvine.com (sandvine.com [199.243.201.138]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9881743D1F for ; Mon, 15 Dec 2003 14:15:18 -0800 (PST) (envelope-from AdilK@sandvine.com) Received: by mail.sandvine.com with Internet Mail Service (5.5.2657.72) id ; Mon, 15 Dec 2003 17:15:17 -0500 Message-ID: From: Adil Katchi To: "'freebsd-hackers@freebsd.org'" Date: Mon, 15 Dec 2003 17:15:17 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2657.72) Content-Type: text/plain; charset="iso-8859-1" Subject: PAM and passwd X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Dec 2003 22:15:20 -0000 I was just wondering if anyone knew about the details of loading PAM. My problem is that I need to create a local user account while I am authenticating using a PAM module. That is, using some remote authentication mechanism, if it authenticates a user, I want to create that user locally on the BSD box and allow the user to log in. What I'm finding is that if the user did not already exist before an authentication started, the overall authentication will fail. That is, the first time a particular user tries to log in, because it doesn't exist, it will fail, but subsequent attempts will pass. This seems to indicate that the local users' info is loaded at PAM startup. Is this true? If so, is there a way to purge that info with the new users' info? thanks, Adil