Sometimes it is necessary for PAM to be able to recognize devices pertaining to multiple domains considering a given search order for the different domain suffixes. For instance let's imagine a new target host exists both in domain testa.com and in another domain (the correct one) and it is configured in PAM without specifying the entire FQDN. In this case PAM resolves the wrong hostname always trying to add the testa.com suffix.
PAM Configured Device: machineA PAM Resolution: machineA.testa.com - 10.20.30.40
Corrected Resolution: machineA.testb.com – 10.20.30.40
Is it possible to add multiple domains to PAM so that when connecting to a device if searches the different domains in order ? That is, it tries first testA.com, then testB.com, etc and it returns with the right domain ?
This is a standard Linux setting: in the resolv.conf fine of the PAM appliance, they keyword search specifies the actual order in which one must resolves the domains.
For instance, if we specify
search testA.com testB.com
when a search is made for the FQDN of machineA, first it will try machineA.testA.com, then machineA.testB.com
The domains specified after the search keyword in resolv.com map the contents of the Domain name box in the Configuration --> Network --> Network settings section under the PAM gui. Therefore it is just a matter of specifying
In the said menu, and that will create the required search entry in resolv.conf of PAM, thus enabling the required functionality