redhat/frr.pam

   1 #%PAM-1.0
   2 #
   3
   4 ##### if running frr as root:
   5 # Only allow root (and possibly wheel) to use this because enable access
   6 # is unrestricted.
   7 auth       sufficient   pam_rootok.so
   8 account    sufficient   pam_rootok.so
   9
  10 # Uncomment the following line to implicitly trust users in the "wheel" group.
  11 #auth       sufficient   pam_wheel.so trust use_uid
  12 # Uncomment the following line to require a user to be in the "wheel" group.
  13 #auth       required     pam_wheel.so use_uid
  14 ###########################################################
  15
  16 # If using frr privileges and with a seperate group for vty access, then
  17 # access can be controlled via the vty access group, and pam can simply
  18 # check for valid user/password, eg:
  19 #
  20 # only allow local users.
  21 #auth       required     pam_securetty.so
  22 #auth       include      system-auth
  23 #auth       required     pam_nologin.so
  24 #account    include      system-auth
  25 #password   include      system-auth
  26 #session    include      system-auth
  27 #session    optional     pam_console.so