diff options
| author | Michael Scherer <misc@mageia.org> | 2010-11-24 01:27:30 +0000 |
|---|---|---|
| committer | Michael Scherer <misc@mageia.org> | 2010-11-24 01:27:30 +0000 |
| commit | 782caf3dd09dfa449e0e1e552af76b9c3ceb33cd (patch) | |
| tree | 4ca2bc15973940f7488edcb95aba0e5f1e0d644d /modules | |
| parent | 3c46cbad25508b1175ea226ef07564831ae0f5cf (diff) | |
| download | puppet-782caf3dd09dfa449e0e1e552af76b9c3ceb33cd.tar puppet-782caf3dd09dfa449e0e1e552af76b9c3ceb33cd.tar.gz puppet-782caf3dd09dfa449e0e1e552af76b9c3ceb33cd.tar.bz2 puppet-782caf3dd09dfa449e0e1e552af76b9c3ceb33cd.tar.xz puppet-782caf3dd09dfa449e0e1e552af76b9c3ceb33cd.zip | |
pam_wheel is made to be used with su only. pam_succeed_if seems to be the proper module
Diffstat (limited to 'modules')
| -rw-r--r-- | modules/pam/templates/system-auth | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/modules/pam/templates/system-auth b/modules/pam/templates/system-auth index 6f4074bc..184553b4 100644 --- a/modules/pam/templates/system-auth +++ b/modules/pam/templates/system-auth @@ -6,10 +6,10 @@ auth [abort=ignore success=done new_authtok_reqd=done default=ignore] pam_tc auth sufficient pam_unix.so likeauth nullok try_first_pass auth sufficient pam_ldap.so use_first_pass <%- if access_class = 'admin' -%> -auth required pam_wheel.so group=mga-sysadmin +auth required pam_succeed_if.so quiet user ingroup mga-sysadmin <%- end -%> <%- if access_class = 'commiters' -%> -auth required pam_wheel.so group=mga-commiters +auth required pam_succeed_if.so quiet user ingroup mga-commiters <%- end -%> auth required pam_deny.so |