Configuring a Pluggable Authentication Module (PAM)

If you selected the Native OS authentication option during installation, perform additional configuration to allow login using accounts on the host system.

  1. Using a login account with root privileges, configure the pluggable authentication module for your platform:
    Platform Action
    Linux

    If you are installing on RHEL 6, copy the <Install-dir>/ESP-5_1/security/pam/rhel6/sybase-csi file (provided with Event Stream Processor) to the /etc/pam.d directory on your Linux platform.

    For previous versions of RHEL, copy the <Install-dir>/ESP-5_1/security/pam/sybase-csi file (provided with Event Stream Processor) to the /etc/pam.d directory on your Linux platform.

    Note: The sybase-csi file provided with Event Stream Processor is not compatible with the most recent SUSE Linux versions. For SUSE 11 and later, see the example at the end of this topic.
    Note: In the table above, the portion of the path that indicates the operating system might differ slightly from what is shown.
  2. If the host UNIX system is not using a directory lookup for authentication (yp or NIS, for example) and authentication is carried out against the local /etc/passwd file, any user account that executes Event Stream Processor requires read access to /etc/shadow. To provide this access, use the usermod command to add the applicable user accounts to the shadow group. For example, for user account User_123 use: usermod -G shadow User_123

Example: PAM for SUSE Linux 11 and later

For SUSE 11 and later, do not use the sybase-csi file provided with Event Stream Processor. Instead, in your /etc/pam.d directory, create a sybase-csi file that contains: 
# sybase-csi PAM Configuration (SUSE style)
auth       include      common-auth
account    include      common-account
password   include      common-password
session    include      common-session
Parent topic: Post Installation