diff options
author | Simo Sorce <ssorce@redhat.com> | 2009-04-04 12:21:18 -0400 |
---|---|---|
committer | Simo Sorce <ssorce@redhat.com> | 2009-04-07 14:27:18 -0400 |
commit | ee762f9b709224a7dc7460fc535ee992045168b8 (patch) | |
tree | daa6d444d6c52868c0a9109d360a4fe64b333df3 /server/examples/sssdproxylocal | |
parent | 2df2e775612734712b72dcf0adf6c66ce530a319 (diff) | |
download | sssd-ee762f9b709224a7dc7460fc535ee992045168b8.tar.gz sssd-ee762f9b709224a7dc7460fc535ee992045168b8.tar.bz2 sssd-ee762f9b709224a7dc7460fc535ee992045168b8.zip |
Split modules types in Identity and Authenticator
The same module may implement both types, but initializatrion will be
nonetheless performed separately, once for the identity module and once for the
authenticator module.
Also change the proxy module to retireve the pam target name from the domain
configuration so that it is possibile to create per-domain pam stacks.
With this modification it is actually possibile to use normal nss and pam
modules to perform a successful authentication (tested only with sudo so far)
Update exmples.
Diffstat (limited to 'server/examples/sssdproxylocal')
-rw-r--r-- | server/examples/sssdproxylocal | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/server/examples/sssdproxylocal b/server/examples/sssdproxylocal new file mode 100644 index 00000000..1bc47f89 --- /dev/null +++ b/server/examples/sssdproxylocal @@ -0,0 +1,9 @@ +#%PAM-1.0 +auth sufficient pam_unix.so +auth requisite pam_succeed_if.so uid >= 500 quiet +auth required pam_deny.so + +account required pam_unix.so +account sufficient pam_succeed_if.so uid < 500 quiet +account required pam_permit.so + |