Default PAM access rights
By default, Access Manager creates three predefined PAM access rights in every parent and child zone:
| This PAM right | Grants access to |
|---|---|
| login-all | All PAM applications on a computer joined to the domain. Adding the login_all PAM access right allows users to log on and use any PAM-enabled application. The right uses the wild card (*) character to match all PAM application names and is included by default in the predefined UNIX Login role. |
| ssh | Secure shell sessions on Debian and Ubuntu 6 and 7. Adding the ssh PAM access right allows users to log on remotely using secure shell connections on Debian and Ubuntu computers joined to the domain. |
| sshd | Secure shell sessions on all Linux and UNIX computers except Debian and Ubuntu 6 and 7. Adding the sshd PAM access right allows users to log on remotely using secure shell connections on all other distributions of Linux and UNIX computers joined to the domain. |
