Normally users are authenticated against encrypted passwords stored into users table in Sauron database. Sauron currently uses by default standard Unix passwords. However, it is possible to use external authentication program for user authentication. Which makes it possible to authenticate users against almost any service.
To enable external user authentication, SAURON_AUTH_PROG in variable in Sauron configuration file must be set to point to external authentication script or program.
A sample script (kerberos-auth) for authenticating against a Kerberos KDC is included in the contrib/ directory.
If SAURON_AUTH_PROG is set in the configuration file, Sauron will run the authentication program every time user is authenticated. Authentication program is expected to read one line from standard input that is in following format:
username password
|