Directive Reference

auth_pam_service_name

The `auth_pam_service_name` directive specifies the PAM service name used for authentication.

PAM authentication dynamic module for NGINX · httpserverlocationlimit_except
Syntaxauth_pam_service_name service_name;
Defaultnginx
Contexthttp, server, location, limit_except
Arguments1

Description

The auth_pam_service_name directive is a configuration option within the PAM authentication module for NGINX, allowing administrators to define which PAM service will be invoked for user authentication. By default, this service name is set to nginx, but administrators can customize it to match their specific requirements. This is particularly useful in environments where multiple services share PAM configurations, as it allows distinct authentication paths based on the application accessing the PAM libraries.

The directive should be specified within the http, server, location, or limit_except contexts of the NGINX configuration. When a HTTP request is received and requires authentication, NGINX will invoke the specified PAM service, which typically references a configuration file in /etc/pam.d/, where the actual authentication rules and mechanisms are defined. For instance, if the directive is set to `auth_pam_service_name

Config Example

location /secure {
    auth_pam "Secure Zone";
    auth_pam_service_name "nginx";
}

Ensure the PAM service is properly configured in /etc/pam.d/ to avoid authentication failures.

The web server user must have permissions to access necessary PAM authentication files, which could pose security risks.

Related Directives

auth_pamauth_pam_set_pam_env
← Back to all directives