1PAM_CHAUTHTOK(3) Linux-PAM Manual PAM_CHAUTHTOK(3)
2
6 pam_chauthtok - updating authentication tokens
7
9 #include <security/pam_appl.h>
10 int pam_chauthtok(pam_handle_t *pamh, int flags);
12
14 The pam_chauthtok function is used to change the authentication token
15 for a given user (as indicated by the state associated with the handle
16 pamh).
17 The pamh argument is an authentication handle obtained by a prior call
19 to pam_start(). The flags argument is the binary or of zero or more of
20 the following values:
21 PAM_SILENT
23 Do not emit any messages.
24 PAM_CHANGE_EXPIRED_AUTHTOK
26 This argument indicates to the modules that the users authentication
27 token (password) should only be changed if it has expired. If this
28 argument is not passed, the application requires that all
29 authentication tokens are to be changed.
30
32 PAM_AUTHTOK_ERR
33 A module was unable to obtain the new authentication token.
34 PAM_AUTHTOK_RECOVERY_ERR
36 A module was unable to obtain the old authentication token.
37 PAM_AUTHTOK_LOCK_BUSY
39 One or more of the modules was unable to change the authentication
40 token since it is currently locked.
41 PAM_AUTHTOK_DISABLE_AGING
43 Authentication token aging has been disabled for at least one of the
44 modules.
45 PAM_PERM_DENIED
47 Permission denied.
48 PAM_SUCCESS
50 The authentication token was successfully updated.
51 PAM_TRY_AGAIN
53 Not all of the modules were in a position to update the
54 authentication token(s). In such a case none of the user's
55 authentication tokens are updated.
56 PAM_USER_UNKNOWN
58 User unknown to password service.
59
61 pam_start(3), pam_authenticate(3), pam_setcred(3), pam_get_item(3),
62 pam_strerror(3), pam(8)
63Linux-PAM Manual 06/27/2006 PAM_CHAUTHTOK(3)