Print this page
NEX-2856 Want SMB entries in pam.conf
| Split |
Close |
| Expand all |
| Collapse all |
--- old/usr/src/lib/libpam/pam.conf
+++ new/usr/src/lib/libpam/pam.conf
1 1 #
2 2 # CDDL HEADER START
3 3 #
4 4 # The contents of this file are subject to the terms of the
5 5 # Common Development and Distribution License (the "License").
6 6 # You may not use this file except in compliance with the License.
7 7 #
8 8 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 9 # or http://www.opensolaris.org/os/licensing.
10 10 # See the License for the specific language governing permissions
11 11 # and limitations under the License.
12 12 #
13 13 # When distributing Covered Code, include this CDDL HEADER in each
14 14 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 15 # If applicable, add the following below this CDDL HEADER, with the
16 16 # fields enclosed by brackets "[]" replaced with your own identifying
17 17 # information: Portions Copyright [yyyy] [name of copyright owner]
18 18 #
19 19 # CDDL HEADER END
20 20 #
21 21 #
22 22 # Copyright 2010 Sun Microsystems, Inc. All rights reserved.
23 23 # Use is subject to license terms.
24 24 #
25 25 # PAM configuration
26 26 #
27 27 # Unless explicitly defined, all services use the modules
28 28 # defined in the "other" section.
29 29 #
30 30 # Modules are defined with relative pathnames, i.e., they are
31 31 # relative to /usr/lib/security/$ISA. Absolute path names, as
32 32 # present in this file in previous releases are still acceptable.
33 33 #
34 34 # Authentication management
35 35 #
36 36 # login service (explicit because of pam_dial_auth)
37 37 #
38 38 login auth requisite pam_authtok_get.so.1
39 39 login auth required pam_dhkeys.so.1
40 40 login auth required pam_unix_cred.so.1
41 41 login auth required pam_unix_auth.so.1
42 42 login auth required pam_dial_auth.so.1
43 43 #
44 44 # rlogin service (explicit because of pam_rhost_auth)
45 45 #
46 46 rlogin auth sufficient pam_rhosts_auth.so.1
47 47 rlogin auth requisite pam_authtok_get.so.1
48 48 rlogin auth required pam_dhkeys.so.1
49 49 rlogin auth required pam_unix_cred.so.1
50 50 rlogin auth required pam_unix_auth.so.1
51 51 #
52 52 # Kerberized rlogin service
53 53 #
54 54 krlogin auth required pam_unix_cred.so.1
55 55 krlogin auth required pam_krb5.so.1
56 56 #
57 57 # rsh service (explicit because of pam_rhost_auth,
58 58 # and pam_unix_auth for meaningful pam_setcred)
59 59 #
60 60 rsh auth sufficient pam_rhosts_auth.so.1
61 61 rsh auth required pam_unix_cred.so.1
62 62 #
63 63 # Kerberized rsh service
64 64 #
65 65 krsh auth required pam_unix_cred.so.1
66 66 krsh auth required pam_krb5.so.1
67 67 #
68 68 # Kerberized telnet service
69 69 #
70 70 ktelnet auth required pam_unix_cred.so.1
71 71 ktelnet auth required pam_krb5.so.1
72 72 #
73 73 # PPP service (explicit because of pam_dial_auth)
74 74 #
75 75 ppp auth requisite pam_authtok_get.so.1
76 76 ppp auth required pam_dhkeys.so.1
77 77 ppp auth required pam_unix_cred.so.1
78 78 ppp auth required pam_unix_auth.so.1
79 79 ppp auth required pam_dial_auth.so.1
80 80 #
81 81 # GDM Autologin (explicit because of pam_allow). These need to be
82 82 # here as there is no mechanism for packages to amend pam.conf as
83 83 # they are installed.
84 84 #
85 85 gdm-autologin auth required pam_unix_cred.so.1
86 86 gdm-autologin auth sufficient pam_allow.so.1
87 87 #
88 88 # Default definitions for Authentication management
89 89 # Used when service name is not explicitly mentioned for authentication
90 90 #
91 91 other auth requisite pam_authtok_get.so.1
92 92 other auth required pam_dhkeys.so.1
93 93 other auth required pam_unix_cred.so.1
94 94 other auth required pam_unix_auth.so.1
95 95 #
96 96 # passwd command (explicit because of a different authentication module)
97 97 #
98 98 passwd auth required pam_passwd_auth.so.1
99 99 #
100 100 # cron service (explicit because of non-usage of pam_roles.so.1)
101 101 #
102 102 cron account required pam_unix_account.so.1
103 103 #
104 104 # cups service (explicit because of non-usage of pam_roles.so.1)
105 105 #
106 106 cups account required pam_unix_account.so.1
107 107 #
108 108 # GDM Autologin (explicit because of pam_allow) This needs to be here
109 109 # as there is no mechanism for packages to amend pam.conf as they are
110 110 # installed.
111 111 #
112 112 gdm-autologin account sufficient pam_allow.so.1
113 113 #
114 114 # Default definition for Account management
115 115 # Used when service name is not explicitly mentioned for account management
116 116 #
117 117 other account requisite pam_roles.so.1
118 118 other account required pam_unix_account.so.1
119 119 #
120 120 # Default definition for Session management
121 121 # Used when service name is not explicitly mentioned for session management
|
↓ open down ↓ |
121 lines elided |
↑ open up ↑ |
122 122 #
123 123 other session required pam_unix_session.so.1
124 124 #
125 125 # Default definition for Password management
126 126 # Used when service name is not explicitly mentioned for password management
127 127 #
128 128 other password required pam_dhkeys.so.1
129 129 other password requisite pam_authtok_get.so.1
130 130 other password requisite pam_authtok_check.so.1
131 131 other password required pam_authtok_store.so.1
132 +other password required pam_smb_passwd.so.1 nowarn
132 133 #
133 134 # Support for Kerberos V5 authentication and example configurations can
134 135 # be found in the pam_krb5(5) man page under the "EXAMPLES" section.
135 136 #
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX