INDEX

[??]

access

account

account-level

accountability

ACI

acknowledgements

ACL

action

active

additional

administration

administrative

agents

AI

API

application

architecture

assertion

association

attribute

audit

auditor

auth

authenticated

authentication

authorities

authority

authorization

availability

aware

back

base

basic

C-language, names

call

calling convention, names

calling convention, status value

cards

certificate

claim

clear

client-server

codes

codesets

common

computing

confidentiality

configuration

conformance

considerations

constants

context

contextual

control

conventions

core

corporate

corrigenda

countermeasure

credentials

data

  • Glossary

    data type, int

    data type, structured

    denial

    development

    digital

    disclosure

    discretionary

    distinguishing

    distributed

    document

    domain

    door

    end-user

    entry

    event

    example

    exchange

    files

    fingerprint

    flags

    framework

    frontmatter

    function

    functional

    functionality

    functions

    glossary

    group

    header

    horse

    identification

    identifier

    identity

    identity-based

    implementation

    in

    information

    initialization

    initiator

    int

    integrity

    interaction

    interface

    internationalization

    issues

    item_type

    key

    label

    layer

    local

    management

    manager

    mapping

    masquerade

    mechanism

    messages

    method

    model

    module

    multiple

    non-discretionary

    non-functional

    objectives

    off-line

    on-line

    opaque

    open

    operational

    option

    ordering

    organizational

    origin

    out

    overview

    PAM

  • Parameter Passing Conventions in PAM
  • Status Values
  • PAM Configuration Entry Constants
  • PAM - Application Program Interface (API)
  • PAM Configuration Administration
  • Additional PAM Options

    PAM Configuration Administration

    PAM Header Files

    PAM, status code

    PAM-API

    PAM-SPI

    PAM_ABORT

    PAM_ACCT_EXPIRED

    PAM_ACCT_EXPIRED, in

    pam_acct_mgmt

    PAM_APPL.H

    PAM_AUTH_ERR

    PAM_AUTH_ERR, in

    pam_authenticate

    pam_authenticate_secondary

    PAM_AUTHINFO_UNAVAIL

    PAM_AUTHINFO_UNAVAIL, in

    PAM_AUTHTOK

    PAM_AUTHTOK_DISABLE_AGING

    PAM_AUTHTOK_DISABLE_AGING, in

    PAM_AUTHTOK_ERR

    PAM_AUTHTOK_ERR, in

    PAM_AUTHTOK_EXPIRED

    PAM_AUTHTOK_EXPIRED, in

    PAM_AUTHTOK_LOCK_BUSY

    PAM_AUTHTOK_LOCK_BUSY, in

    PAM_AUTHTOK_RECOVERY_ERR

    PAM_AUTHTOK_RECOVERY_ERR, in

    PAM_BUF_ERR

    PAM_BUF_ERR in

    PAM_BUF_ERR, in

    PAM_BUF_ERR, in

    PAM_CHANGE_EXPIRED_AUTHTOK

    pam_chauthtok

    pam_close_session

    PAM_CONV

    PAM_CONV_ERR

    PAM_CONV_ERR in

    PAM_CONV_ERR, in

    PAM_CONV_ERR, in

    PAM_CONV_ERR], in

    PAM_CRED_ERR

    PAM_CRED_ERR, in

    PAM_CRED_EXPIRED

    PAM_CRED_EXPIRED, in

    PAM_CRED_INSUFFICIENT

    PAM_CRED_INSUFFICIENT, in

    PAM_CRED_PRELIM_CHECK

    PAM_CRED_UNAVAIL

    PAM_CRED_UNAVAIL, in

    PAM_DELETE_CRED

    PAM_DISALLOW_NULL_AUTHTOK

    PAM_DOMAIN_UNKNOWN

    PAM_DOMAIN_UNKNOWN, in

    pam_end

    PAM_ERROR_MSG

    PAM_ESTABLISH_CRED

    pam_get_data

    pam_get_item

    pam_get_mapped_authtok

    pam_get_mapped_username

    pam_get_user

    pam_getenv

    pam_getenvlist

    PAM_IGNORE

    PAM_IGNORE, in

    PAM_MAX_MSG_SIZE

    PAM_MAX_NUM_MSG

    PAM_MAX_RESP_SIZE

    PAM_MAXTRIES

    PAM_MAXTRIES, in

    PAM_MODULE.H

    PAM_MODULE_UNKNOWN

    PAM_MODULE_UNKNOWN, in

    PAM_NEW_AUTHTOK_REQD

    PAM_NEW_AUTHTOKEN_REQD, in

    PAM_NO_MODULE_DATA

    PAM_NO_MODULE_DATA, in

    PAM_OLDAUTHTOK

    PAM_OPEN_ERR, in

    pam_open_session

    PAM_PERM_DENIED

    PAM_PERM_DENIED, in

    PAM_PROMPT_ECHO_OFF

    PAM_PROMPT_ECHO_ON

    pam_putenv

    PAM_REFRESH_CRED

    PAM_REINITIALISE_CRED

    PAM_RHOST

    PAM_RUSER

    PAM_SERVICE

    PAM_SERVICE_ERR

    PAM_SERVICE_ERR, in

    PAM_SERVICE_ERR, in

    PAM_SESSION_ERR

    PAM_SESSION_ERR, in

    pam_set_data

    pam_set_item

    pam_set_mapped_authtok

    pam_set_mapped_username

    pam_setcred

    PAM_SILENT

    pam_sm_acct_mgmt

    pam_sm_authenticate

    pam_sm_authenticate_secondary

    pam_sm_chauthtok

    pam_sm_close_session

    pam_sm_get_mapped_authtok

    pam_sm_get_mapped_username

    pam_sm_open_session

    pam_sm_set_mapped_authtok

    pam_sm_set_mapped_username

    pam_sm_setcred

    pam_start

    pam_strerror

    PAM_SUCCESS

    PAM_SUCCESS, in

    PAM_SYMBOL_ERR

    PAM_SYMBOL_ERR, in

    PAM_SYMBOL_ERR, in

    PAM_SYMBOL_ERR], in

    PAM_SYSTEM_ERR

    PAM_SYSTEM_ERR in

    PAM_SYSTEM_ERR, in

    PAM_TEXT_INFO

    PAM_TRY_AGAIN

    PAM_TRY_AGAIN, in

    PAM_TTY

    PAM_UPDATE_AUTHTOK

    PAM_USER

    PAM_USER_PROMPT

    PAM_USER_UNKNOWN

    PAM_USER_UNKNOWN, in

    parameter

    Parameter Passing Conventions in PAM

    parameters

    party

    passing

    password

    path

    peer-entity

    physical

    platform

    policy

    preface

    primary

  • Glossary

    principal

    privacy

    product

    program

    programming

    proposed

    protection

    publications

    quality

    referenced

    registry

    remote

    repudiation

    requirements

    return value

    rule-based

    scope

  • XSSO Account Management Services

    seal

    secondary

  • Glossary

    secret

    secure

    security

    service

  • Parameter Passing Conventions in PAM
  • PAM Configuration Administration
  • XSSO Account Management Services
  • Management of Account Information for Multiple Services
  • Glossary

    session

    sign-on

  • XSSO Architecture
  • XSSO Sign-on Services
  • XSSO Sign-on Service Structure
  • Models of Primary and Secondary Sign-on
  • Primary Sign-on
  • Secondary Sign-on
  • Single Sign-on to Local Application Domain
  • Single Sign-on to Distributed Domain
  • Single Sign-on to Remote Local Service
  • Single Sign-on to Remote Distributed Service

    signature

    single

    smart

    solution

    specifications

    SSO introduction

    standards

    state

    status

    status code

    status value

    strength

    structure

    structured

    system

    system-level

    target

    TCB

    text

    third

    this

    threat

    token

    trademarks

    trail

    trap

    trojan

    trust

    trusted

    type

  • XSSO Account Management Services

    typographical

    UAM

    unaware

    user

    usernames

    values

    verification

    verifier

    versions

    vulnerability

    XBSS

    XSSO

  • XSSO Sign-on Services
  • XSSO Sign-on Service Structure
  • XSSO Account Management Services
  • Scope of XSSO Account Management
  • XSSO Account Management Implementation Considerations
  • Mapping of Administrative Authorities to XSSO UAM Agents
  • XSSO Management Information Base Initialization

    XSSO Account Management Services

    XSSO Architecture

    XSSO Sign-on Services