nerdexam
GIAC

GCIH · Question #716

What can a Linux administrator use to take advantage of RADIUS?

The correct answer is C. PAM. Linux PAM (Pluggable Authentication Modules) is the framework that allows administrators to integrate external authentication services like RADIUS into Linux system login.

Incident Response & Cyber Kill Chain

Question

What can a Linux administrator use to take advantage of RADIUS?

Options

  • AS/KEY
  • BSYSKEY
  • CPAM
  • DShadow

How the community answered

(23 responses)
  • A
    4% (1)
  • B
    4% (1)
  • C
    91% (21)

Why each option

Linux PAM (Pluggable Authentication Modules) is the framework that allows administrators to integrate external authentication services like RADIUS into Linux system login.

AS/KEY

S/KEY is a one-time password scheme that operates independently and does not interface with or leverage RADIUS infrastructure.

BSYSKEY

SYSKEY is a deprecated Windows feature for encrypting the SAM database and has no relevance to Linux or RADIUS authentication.

CPAMCorrect

PAM provides a modular authentication layer on Linux that supports pluggable backends, including RADIUS via modules such as pam_radius_auth. By configuring PAM to forward authentication requests to a RADIUS server, administrators enable centralized AAA (authentication, authorization, accounting) for Linux hosts. This makes PAM the standard mechanism for RADIUS integration on Linux systems.

DShadow

Shadow refers to the /etc/shadow file used for storing local Linux password hashes, which is a local authentication method with no RADIUS capability.

Concept tested: Linux PAM integration with RADIUS authentication

Source: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/configuring_authentication_and_authorization_in_rhel/assembly_using-pam_configuring-authentication-and-authorization-in-rhel

Topics

#RADIUS#PAM#authentication#Linux access control

Community Discussion

No community discussion yet for this question.

Full GCIH Practice