Enable Kerberos Support — Select this
option to enable Kerberos authentication. Click the
Configure Kerberos button to configure:
Realm — Configure the realm for
the Kerberos server. The realm is the network that uses Kerberos,
composed of one or more KDCs and a potentially large number of
KDC — Define the Key Distribution
Center (KDC), which is the server that issues Kerberos
Admin Servers — Specify the
administration server(s) running
The krb5-libs and
krb5-workstation packages must be installed for
this option to work. Refer to the Red Hat Enterprise Linux Reference Guide for
more information on Kerberos.
Enable LDAP Support — Select this
option to have standard PAM-enabled applications use LDAP for
authentication. Click the Configure LDAP
button to specify the following:
Use TLS to encrypt connections —
Use Transport Layer Security to encrypt passwords sent to the
LDAP Search Base DN — Retrieve
user information by its Distinguished Name (DN).
LDAP Server — Specify the IP
address of the LDAP server.
The openldap-clients package must be
installed for this option to work. Refer to the
Red Hat Enterprise Linux Reference Guide for more information about LDAP.
Use Shadow Passwords — Select this
option to store passwords in shadow password format in the
/etc/shadow file instead of
/etc/passwd. Shadow passwords are enabled by
default during installation and are highly recommended to increase
the security of the system.
The shadow-utils package must be installed
for this option to work. For more information about shadow
passwords, refer to the Users and Groups
chapter in the Red Hat Enterprise Linux Reference Guide.
Enable SMB Support — This option
configures PAM to use an SMB server to authenticate users. Click the
Configure SMB button to specify:
Winbind — Select this option to configure
the system to connect to a Windows Active Directory or a Windows domain
controller. User information can be accessed, as well as server authentication
options can be configured.
Use MD5 Passwords — Select this
option to enable MD5 passwords, which allows passwords to be up to 256
characters instead of eight characters or less. It is selected by
default during installation and is highly recommended for increased