forked from vyos/vyos-1x
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[Kim] vyos#2554 fix pam ldaps config
- Loading branch information
Showing
3 changed files
with
1 addition
and
21 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,12 +1,4 @@ | ||
| # here are the per-package modules (the "Primary" block) | ||
| account [success=ok default=1] pam_localuser.so | ||
| account [success=1 new_authtok_reqd=done default=ignore] pam_unix.so | ||
| # here's the fallback if no module succeeds | ||
| account requisite pam_deny.so | ||
| # prime the stack with a positive return value if there isn't one already; | ||
| # this avoids us returning an error just because nothing sets a success code | ||
| # since the modules above will each just jump around | ||
| account required pam_permit.so | ||
| # and here are more per-package modules (the "Additional" block) | ||
| account [success=ok new_authtok_reqd=done ignore=ignore user_unknown=ignore authinfo_unavail=ignore default=bad] pam_ldap.so minimum_uid=1000 | ||
| # end of pam-auth-update config |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,12 +1,7 @@ | ||
| # here are the per-package modules (the "Primary" block) | ||
| auth [success=ok default=1] pam_localuser.so | ||
| auth required pam_group.so | ||
| auth [success=2 default=ignore] pam_unix.so nullok | ||
| auth [success=1 default=ignore] pam_ldap.so minimum_uid=1000 use_first_pass | ||
| # here's the fallback if no module succeeds | ||
| auth requisite pam_deny.so | ||
| # prime the stack with a positive return value if there isn't one already; | ||
| # this avoids us returning an error just because nothing sets a success code | ||
| # since the modules above will each just jump around | ||
| auth required pam_permit.so | ||
| # and here are more per-package modules (the "Additional" block) | ||
| auth optional pam_cap.so |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,13 +1,6 @@ | ||
| # here are the per-package modules (the "Primary" block) | ||
| session [default=1] pam_permit.so | ||
| # here's the fallback if no module succeeds | ||
| session requisite pam_deny.so | ||
| # prime the stack with a positive return value if there isn't one already; | ||
| # this avoids us returning an error just because nothing sets a success code | ||
| # since the modules above will each just jump around | ||
| session required pam_permit.so | ||
| # and here are more per-package modules (the "Additional" block) | ||
| session required pam_mkhomedir.so umask=0022 skel=/etc/skel | ||
| session required pam_unix.so | ||
| session [success=ok default=ignore] pam_ldap.so minimum_uid=1000 | ||
| # end of pam-auth-update config |