Bypassing PAM modules for particular groups in Linux
mdnteo
mdnteo at gmail.com
Mon Apr 14 20:31:49 UTC 2008
It should work with pam_succeed_if, you can check the manual for full
details.
I.E.
account required pam_succeed_if.so uid>=200 shell=bash
*field < number* Field has a value numerically less than number. *field <=
number* Field has a value numerically less than or equal to number. *field
eq number* Field has a value numerically less equal to number. *field >=
number* Field has a value numerically greater than or equal to number. *field
> number* Field has a value numerically greater than number. *field ne
number* Field has a value numerically different from number. *field = string
* Field exactly matches the given string. *field != string* Field does not
match the given string. *field =~ glob* Field matches the given glob. *field
!~ glob* Field does not match the given glob. *field in item:item:...* Field
is contained in the list of items separated by colons. *field notin
item:item:...* Field is not contained in the list of items separated by
colons. *user ingroup group* User is in given group. *user notingroup
group* User
is not in given group. *user innetgr netgroup* (user,host) is in given
netgroup. *user notinnetgr group* (user,host) is not in given netgroup.
----
2008/4/14 Vasudeva R <rachamad at gmail.com>:
> Hi,
>
> I need to bypass system default PAM-modules only for particular groups on
> Redhat Linux 3 and 4 version. Can anybody help me how to configure this ?
>
> Thanks in advance
> Vasudeva
>
>
> _______________________________________________
> Pam-list mailing list
> Pam-list at redhat.com
> https://www.redhat.com/mailman/listinfo/pam-list
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pam-list/attachments/20080414/d60269a4/attachment.htm>
More information about the Pam-list
mailing list