diff options
| author | Elizabeth Hunt <me@liz.coffee> | 2025-07-20 22:08:30 -0700 |
|---|---|---|
| committer | Elizabeth Hunt <me@liz.coffee> | 2025-07-20 22:08:30 -0700 |
| commit | d41dcde0556c425a959961c47db7aa1044182a84 (patch) | |
| tree | fb00321acc11472373087eaf69415748b6fbd389 /fs/etc/pam.d | |
| parent | dbad03a65449c798ac8bccaf806dbdef8a360689 (diff) | |
| download | archinstall-d41dcde0556c425a959961c47db7aa1044182a84.tar.gz archinstall-d41dcde0556c425a959961c47db7aa1044182a84.zip | |
Updates
Diffstat (limited to 'fs/etc/pam.d')
| -rw-r--r-- | fs/etc/pam.d/system-auth | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/fs/etc/pam.d/system-auth b/fs/etc/pam.d/system-auth new file mode 100644 index 0000000..82b2f52 --- /dev/null +++ b/fs/etc/pam.d/system-auth @@ -0,0 +1,28 @@ +#%PAM-1.0 + +auth required pam_faillock.so preauth +auth sufficient pam_kanidm.so +-auth [success=2 default=ignore] pam_systemd_home.so +auth [success=1 default=bad] pam_unix.so try_first_pass +auth [default=die] pam_faillock.so authfail +auth optional pam_permit.so +auth required pam_env.so +auth required pam_faillock.so authsucc + +account sufficient pam_kanidm.so +-account [success=1 default=ignore] pam_systemd_home.so +account required pam_unix.so +account optional pam_permit.so +account required pam_time.so + +password sufficient pam_kanidm.so +-password [success=1 default=ignore] pam_systemd_home.so +password required pam_unix.so try_first_pass shadow +password optional pam_permit.so + +-session optional pam_systemd_home.so +session required pam_limits.so +session required pam_unix.so +session optional pam_kanidm.so +session optional pam_permit.so + |