|
PAM authentication for administrators is available only for Dr.Web Servers running Unix-like OSs. |
PAM authentication involves using user-configured policies based on pluggable authentication modules.
To configure and enable PAM authentication
1.Create a drwcs policy file in the /etc/pam.d folder.
2.In the policy file, specify the parameters for authenticating users that meet the requirements of your organization. When configuring your PAM authentication modules, use the parameters set in Dr.Web Enterprise Security Suite (see step 4 or the auth-pam.conf configuration file), minding the default values used if a parameter is not specified.
3.Enable PAM authentication on Dr.Web Server: select Administration in the main menu of the Control Center, then select Authentication in the control menu → PAM authentication and set the Use PAM authentication flag.
4.If necessary, change the configuration parameters:
•Set the Allow only HTTPS connections flag to forbid connecting to Dr.Web Server using PAM authentication over an insecure HTTP connection.
•In the Service name field, change the name of the service to be used in the PAM context (drwcs by default). If you change this value, change the name of the policy file created in step 1 accordingly.
|
Changing the value of the Control flag name field and setting the Control flag is mandatory flag is not recommended. |
5.Click Save.
6.Restart Dr.Web Server to apply changes.
You can also use the auth-pam.conf configuration file located in the etc folder of Dr.Web Server to configure the parameters of PAM authentication. A description of the configuration file is provided in the Appendices, in section B4. PAM Authentication.