1 # Configuration file for Pluggable Authentication Modules (PAM).
3 # This file controls the authentication methods that login and other
4 # utilities use. See pam(8) for a description of its format.
6 # Note: the final entry must say "required" -- otherwise, things don't
7 # work quite right. If you delete the final entry, be sure to change
8 # "sufficient" to "required" in the entry before it.
12 # If the user can authenticate with S/Key, that's sufficient.
13 login auth sufficient pam_skey.so
15 # Check skey.access to make sure it is OK to let the user type in
16 # a cleartext password. If not, then fail right here.
17 login auth requisite pam_cleartext_pass_ok.so
19 # If you want KerberosIV authentication, uncomment the next line:
20 #login auth sufficient pam_kerberosIV.so try_first_pass
22 # Traditional getpwnam() authentication.
23 login auth required pam_unix.so try_first_pass