projects / matthijs / servers / drsnuggles.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
pam: Only use LDAP for auth and account, remove unix authentication.
[matthijs/servers/drsnuggles.git] / etc / pam.d / common-session
diff --git a/etc/pam.d/common-session b/etc/pam.d/common-session
index dc11da6d7845c32341f15e0cd84e9f61a523d7b1..840e35f24fbab3615b02410aaf6734de62dffe4b 100644 (file)
--- a/etc/pam.d/common-session
+++ b/etc/pam.d/common-session
@@ -6,4 +6,13 @@
 # at the start and end of sessions of *any* kind (both interactive and
 # non-interactive).  The default is pam_unix.
 #
-session        required        pam_unix.so
+# Default was:
+#
+# session      required        pam_unix.so
+
+# LDAP config based on from http://wiki.debian.org/LDAP/PAM
+session     required      pam_limits.so
+session     required      pam_unix.so
+session     required      pam_ldap.so
+
+session     required      pam_mkhomedir.so skel=/etc/skel umask=0022
Configuration files for drsnuggles.stderr.nl