The Sun Ray Admin GUI takes advantage of the Pluggable Authentication Module (PAM) framework to authenticate users against different back ends, such as LDAP or NIS, for example.
After initial setup, the Admin GUI uses its own PAM module to support authentication against the Sun Ray data store. This configuration allows the administrator to log in to a single administrative user account with user name “admin” and the password provided during the Sun Ray Server Software configuration. This initial PAM configuration can be adapted to support other mechanisms, for example, to authenticate users against existing UNIX accounts.
In addition to authentication, the Admin GUI also performs an authorization check. Only users on the authorized user list are allowed to administer Sun Ray services. You can use the Sun Ray utadminuser command to add or remove user names to this list.