A PAM module for authentication with Touch ID
A PAM module for authentication with Touch ID.
The module takes an optional parameter: "reason".
Its value will be shown in the dialog presented to the user.
If the argument is omitted, generic text is used.
Do not procede unless you're 1,000,000% sure what you're doing.
If you're only 999,999% sure, then turn back now.
/etc/pam.d/sudoin your favourite text editor
auth sufficient pam_touchid.so reason="execute a command as another user"to the top of the file
The procedure is pretty much the same for any other process, but you'd edit a different config file and probably change the reason too.
suto put the config file back