Gitiles
Code Review Sign In
gerrit.opencord.org / quagga / 5c8d16fd853c29856e45709424701c93ef626f2f / . / redhat / quagga.pam
blob: 9a91ad852fbd7018c79d117a46f949abe86d6e90 [file] [log] [blame]
paul788cdc62003-01-18 00:22:08 +0000[diff] [blame]1#%PAM-1.0
2#
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]3
paul5f5eab72003-08-12 12:56:00 +0000[diff] [blame]4##### if running quagga as root:
paul788cdc62003-01-18 00:22:08 +0000[diff] [blame]5# Only allow root (and possibly wheel) to use this because enable access
6# is unrestricted.
paul85706762005-11-04 12:25:23 +0000[diff] [blame]7auth sufficient pam_rootok.so
paul788cdc62003-01-18 00:22:08 +0000[diff] [blame]8
paul788cdc62003-01-18 00:22:08 +0000[diff] [blame]9# Uncomment the following line to implicitly trust users in the "wheel" group.
paul85706762005-11-04 12:25:23 +0000[diff] [blame]10#auth sufficient pam_wheel.so trust use_uid
paul788cdc62003-01-18 00:22:08 +0000[diff] [blame]11# Uncomment the following line to require a user to be in the "wheel" group.
paul85706762005-11-04 12:25:23 +0000[diff] [blame]12#auth required pam_wheel.so use_uid
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]13###########################################################
14
paul5f5eab72003-08-12 12:56:00 +0000[diff] [blame]15# If using quagga privileges and with a seperate group for vty access, then
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]16# access can be controlled via the vty access group, and pam can simply
paul2f4453f2003-08-13 06:05:01 +0000[diff] [blame]17# check for valid user/password, eg:
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]18#
19# only allow local users.
paul85706762005-11-04 12:25:23 +0000[diff] [blame]20#auth required pam_securetty.so
21#auth include system-auth
22#auth required pam_nologin.so
23#account include system-auth
24#password include system-auth
25#session include system-auth
26#session optional pam_console.so