diff options
Diffstat (limited to 'data/ad/common-password')
| -rw-r--r-- | data/ad/common-password | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/data/ad/common-password b/data/ad/common-password new file mode 100644 index 0000000..4cda16c --- /dev/null +++ b/data/ad/common-password @@ -0,0 +1,11 @@ +password [success=2 default=ignore] pam_unix.so obscure sha512 +password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass +# here's the fallback if no module succeeds +password requisite pam_deny.so +# prime the stack with a positive return value if there isn't one already; +# this avoids us returning an error just because nothing sets a success code +# since the modules above will each just jump around +password required pam_permit.so +# and here are more per-package modules (the "Additional" block) +password optional pam_gnome_keyring.so + |