<?xml version="1.0" encoding="UTF-8" standalone="no"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>20.14. BSD Authentication</title><link rel="stylesheet" type="text/css" href="stylesheet.css" /><link rev="made" href="pgsql-docs@lists.postgresql.org" /><meta name="generator" content="DocBook XSL Stylesheets Vsnapshot" /><link rel="prev" href="auth-pam.html" title="20.13. PAM Authentication" /><link rel="next" href="client-authentication-problems.html" title="20.15. Authentication Problems" /></head><body><div xmlns="http://www.w3.org/TR/xhtml1/transitional" class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="5" align="center">20.14. BSD Authentication</th></tr><tr><td width="10%" align="left"><a accesskey="p" href="auth-pam.html" title="20.13. PAM Authentication">Prev</a> </td><td width="10%" align="left"><a accesskey="u" href="client-authentication.html" title="Chapter 20. Client Authentication">Up</a></td><th width="60%" align="center">Chapter 20. Client Authentication</th><td width="10%" align="right"><a accesskey="h" href="index.html" title="PostgreSQL 11.12 Documentation">Home</a></td><td width="10%" align="right"> <a accesskey="n" href="client-authentication-problems.html" title="20.15. Authentication Problems">Next</a></td></tr></table><hr></hr></div><div class="sect1" id="AUTH-BSD"><div class="titlepage"><div><div><h2 class="title" style="clear: both">20.14. BSD Authentication</h2></div></div></div><a id="id-1.6.7.21.2" class="indexterm"></a><p> This authentication method operates similarly to <code class="literal">password</code> except that it uses BSD Authentication to verify the password. BSD Authentication is used only to validate user name/password pairs. Therefore the user's role must already exist in the database before BSD Authentication can be used for authentication. The BSD Authentication framework is currently only available on OpenBSD. </p><p> BSD Authentication in <span class="productname">PostgreSQL</span> uses the <code class="literal">auth-postgresql</code> login type and authenticates with the <code class="literal">postgresql</code> login class if that's defined in <code class="filename">login.conf</code>. By default that login class does not exist, and <span class="productname">PostgreSQL</span> will use the default login class. </p><div class="note"><h3 class="title">Note</h3><p> To use BSD Authentication, the PostgreSQL user account (that is, the operating system user running the server) must first be added to the <code class="literal">auth</code> group. The <code class="literal">auth</code> group exists by default on OpenBSD systems. </p></div></div><div xmlns="http://www.w3.org/TR/xhtml1/transitional" class="navfooter"><hr></hr><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="auth-pam.html" title="20.13. PAM Authentication">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="client-authentication.html" title="Chapter 20. Client Authentication">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="client-authentication-problems.html" title="20.15. Authentication Problems">Next</a></td></tr><tr><td width="40%" align="left" valign="top">20.13. PAM Authentication </td><td width="20%" align="center"><a accesskey="h" href="index.html" title="PostgreSQL 11.12 Documentation">Home</a></td><td width="40%" align="right" valign="top"> 20.15. Authentication Problems</td></tr></table></div></body></html>