bc-serverservice user Unix

This is a user service which maps Unix users and groups into BeyondCron users and roles.

Only use this service if your server uses and external name service for users, as it is not able to authenticate users whose passwords are stored in /etc/shadow.

Configuration variables

The following configuration variables can be defined using the config set command. One set, the service can be loaded/reloaded using the user service reload command.

beyondcron.user.service Unix
unix.refresh.period Period in minutes after which the Unix user/group → BeyondCron user/role mappings are refreshed. The command user service refresh can be used to refresh on demand. Default is 15 minutes.
unix.group.prefix Any Unix groups named with this prefix will be mapped within BeyondCron as roles without the prefix. e.g. bc_operatoroperator. Any users belonging to these groups will be registered as belonging to the resultant role. Default is bc_
unix.group.required If true, only Unix users who belong to one or more bc_name groups will be able to login to BeyondCron. Default is false
unix.pam.auth.service PAM authentication service to authenticate users against. Default is login

Example

BeyondCron % config set beyondcron.user.service Unix
BeyondCron % user service reload

See also

  • service user AD
  • service user AWS

Reference

  • Using Pluggable Authentication Modules (PAM)