meta-ibm: Remove forward_pass in GoogleAuth config Modified the PAM configuration for Google Authenticator by removing the 'forward_pass' option. This change ensures that TOTP is no longer passed to subsequent modules. Change-Id: Id167c2ac2d9309da4e7393e64d778280fbf0334f Signed-off-by: Asmitha Karunanithi <asmitk01@in.ibm.com>

commit: 7ca06619dc5eed68ce9227f5a6a029a90571c643 [log] [tgz]
author: Asmitha Karunanithi <asmitk01@in.ibm.com> Mon Sep 16 00:57:05 2024 -0500
committer: Asmitha Karunanithi <asmitk01@in.ibm.com> Mon Sep 16 12:48:30 2024 +0000
tree: 3bde0696c80ed8909d4747e4a9c60a9e62511657
parent: 60931612df6f6650d99cc472505adb88b8d009d4 [diff]
diff --git a/meta-ibm/recipes-extended/pam/libpam/pam.d/common-auth b/meta-ibm/recipes-extended/pam/libpam/pam.d/common-auth
index 65f9c83..4d080c6 100644
--- a/meta-ibm/recipes-extended/pam/libpam/pam.d/common-auth
+++ b/meta-ibm/recipes-extended/pam/libpam/pam.d/common-auth

@@ -9,7 +9,7 @@
 
 # here are the per-package modules (the "Primary" block)
 # Try for local user first, and then try for ldap
-auth required pam_google_authenticator.so forward_pass nullok
+auth required pam_google_authenticator.so nullok
 auth    [success=3 default=ignore]          pam_unix.so quiet
 -auth   [success=2 default=ignore]          pam_ldap.so ignore_unknown_user ignore_authinfo_unavail
 # Control gets here when no authentication module succeeds.  Increment the
commit	7ca06619dc5eed68ce9227f5a6a029a90571c643	[log] [tgz]
author	Asmitha Karunanithi <asmitk01@in.ibm.com>	Mon Sep 16 00:57:05 2024 -0500
committer	Asmitha Karunanithi <asmitk01@in.ibm.com>	Mon Sep 16 12:48:30 2024 +0000
tree	3bde0696c80ed8909d4747e4a9c60a9e62511657
parent	60931612df6f6650d99cc472505adb88b8d009d4 [diff]