UNIX Authentication on the Server Side

Dealing with authentication issues on the server side is more difficult than dealing with them on the client side. The caller's RPC package passes the service dispatch routine a request that has an arbitrary authentication style associated with it. The server must then determine which style of authentication the caller used and whether the style is supported by the RPC package.

If the authentication parameter type is not suitable for the calling service, the service dispatch routine calls the svcerr_weakauth routine to refuse the remote procedure call. It is not customary for the server to check the authentication parameters associated with procedure 0 (NULLPROC).

If the service does not have the requested protocol, the service dispatch returns a status for access denied. The svcerr_systemerr primitive is called to detect a system error that is not covered by a service protocol.