blob: 4ac58fb54d8c016b9d3b2f5f688867945fbee1ef [file] [log] [blame]
Richard Marian Thomaiyarbb70abc2018-07-16 01:01:32 +05301#
2# /etc/pam.d/common-auth - authentication settings common to all services
3#
4# This file is included from other service-specific PAM config files,
5# and should contain a list of the authentication modules that define
6# the central authentication scheme for use on the system
7# (e.g., /etc/shadow, LDAP, Kerberos, etc.). The default is to use the
8# traditional Unix authentication mechanisms.
9
10# here are the per-package modules (the "Primary" block)
11auth [success=ok default=1] pam_tally2.so deny=0 unlock_time=0
12auth [success=1 default=ignore] pam_unix.so nullok_secure
13# here's the fallback if no module succeeds
14auth requisite pam_deny.so
15# prime the stack with a positive return value if there isn't one already;
16# this avoids us returning an error just because nothing sets a success code
17# since the modules above will each just jump around
18auth required pam_permit.so
19# and here are more per-package modules (the "Additional" block)