Secure Global Desktop 4.31 Administration Guide > Users and authentication > The UNIX user login authority

The UNIX user login authority

Overview

The UNIX group login authority allows users to log in to Secure Global Desktop if they have UNIX/Linux accounts on the Secure Global Desktop host. All users have the same webtop content.

This login authority is disabled by default.

Logging in

The user types a UNIX/Linux username and password.

Authentication

This login authority checks the username and password against the UNIX/Linux user database.
If the authentication fails, the next login authority is tried.
If the authentication succeeds, the user may log in.

User identity

The identity is always .../_user/UNIX-username.

Login profile

The profile object o=Secure Global Desktop System Objects/cn=UNIX User Profile is always used for the login profile.

This means all UNIX users receive the same webtop content.

Emulator sessions and password cache entries

Emulator sessions and password cache entries belong to the UNIX user.

Secure Global Desktop and PAM

Secure Global Desktop supports Pluggable Authentication Modules (PAM). The UNIX user login authority uses PAM for user authentication, account operations and password operations.

When you install Secure Global Desktop, Secure Global Desktop Setup automatically creates PAM configuration entries for Secure Global Desktop by copying the current configuration for the passwd program.

On Solaris Operating System platforms, entries are created in the /etc/pam.conf file.
On Linux platforms, the /etc/pam.d/tarantella file is created.

Related topics
Login authorities Secure Global Desktop Login properties (array-wide)