Using PAM-enabled applications

The default UNIX Login role includes the predefined login-all PAM access right to enable users to log on and access any PAM-enabled application. If you define specific PAM access rights, users who are assigned a role with that right can only access the specifically authorized PAM-enabled applications. For example, users who are assigned to a role that includes the right to access FTP (ftpd) can connect to the FTP server by typing a command similar to the following: