diff options
Diffstat (limited to 'data/ad/common-account')
-rw-r--r-- | data/ad/common-account | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/data/ad/common-account b/data/ad/common-account new file mode 100644 index 0000000..e06e539 --- /dev/null +++ b/data/ad/common-account @@ -0,0 +1,9 @@ +account [success=2 new_authtok_reqd=done default=ignore] pam_unix.so +account [success=1 default=ignore] pam_ldap.so +# here's the fallback if no module succeeds +account requisite pam_deny.so +# prime the stack with a positive return value if there isn't one already; +# this avoids us returning an error just because nothing sets a success code +# since the modules above will each just jump around +account required pam_permit.so + |