pam_setcred(3)
NAME
pam_setcred − modify/delete user credentials for an authentication service
SYNOPSIS
cc [ flag ... ] file ... −lpam [ library ... ]
#include <security/pam_appl.h>
int pam_setcred(pam_handle_t ∗ pamh, int flags);
DESCRIPTION
pam_setcred() is used to establish, modify, or delete user credentials. pam_setcred() is typically called after the user has been authenticated and after a session has been opened. See pam_authenticate(3), pam_acct_mgmt(3), and pam_open_session(3).
The user is specified by a prior call to pam_start() or pam_set_item(), and is referenced by the authentication handle, pamh. The following flags may be set in the flags field. Note that the first four flags are mutually exclusive:
PAM_ESTABLISH_CRED
Set user credentials for an authentication service.
PAM_DELETE_CRED Delete user credentials associated with an authentication service.
PAM_REINITIALIZE_CRED
Reinitialize user credentials.
PAM_REFRESH_CRED
Extend lifetime of user credentials.
PAM_SILENT Authentication service should not generate any messages.
If no flag is set, PAM_ESTABLISH_CRED is used as the default.
RETURN VALUES
Upon success, pam_setcred() returns PAM_SUCCESS. In addition to the error return values described in pam(3), the following values may be returned upon error:
PAM_CRED_UNAVAIL Underlying authentication service can not retrieve user credentials unavailable.
PAM_CRED_EXPIRED User credentials expired.
PAM_USER_UNKNOWN
User unknown to underlying authentication service.
PAM_CRED_ERR Failure setting user credentials.
ATTRIBUTES
See attributes(5) for description of the following attributes:
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
| MT Level | MT-Safe with exceptions |
SEE ALSO
pam(3), pam_acct_mgmt(3), pam_authenticate(3), pam_open_session(3), pam_set_item(3), pam_start(3), libpam(4), attributes(5)
NOTES
The interfaces in libpam() are MT-Safe only if each thread within the multi-threaded application uses its own PAM handle.
SunOS 5.6 — Last change: 23 Apr 1997