Hello experts
I have the following scenarios in which I require your support
First scenario
The client has several servers in which he has a user in charge of administering the application and other users in charge of administering the server as such. both application management and server administration is done with the sofiaadmin account. The client requires that application administrators have dual approval while operators should not have any restrictions.
How can I handle this scenario?
Second scenario
The client requires that access to the servers via SSH or RDP be free and has no dual authorization, but for certain users who have the option to see the password an authorization is generated. In other words, access is without dual authorization while the password display has dual authorization enabled.
How can I work and configure these scenarios in PAM?