Forge Home


PAM module for Puppet.


12,652 latest version

2.3 quality score

Version information

  • 0.0.7 (latest)
  • 0.0.6
  • 0.0.5
  • 0.0.4
released May 28th 2013

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'torian-pam', '0.0.7'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add torian-pam
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install torian-pam --version 0.0.7

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Tags: debian, redhat, pam


torian/pam — version 0.0.7 May 28th 2013

Puppet PAM Module


Puppet module to manage PAM configuration.


Class pam::pamd

No module configuration

class { 'pam::pamd': }

Ldap module

If you want pam_ldap:

class { 'pam::pamd': pam_ldap => true, } Or even if you need a specific behavoir on auth:

class { 'pam::pamd': pam_ldap => true, pam_ldap_auth => '[success=1 default=ignore] use_first_pass' }

Note: otherwise, pam_ldap_auth defaults to 'sufficient use_first_pass'


Tested on

  • Debian: Etch / Squeeze / Wheezy
  • Redhat: 5.x / 6.x
  • OVS: 2.x / 3.x
  • OpenSuSE 12.x / SLES 11.x

Tested PAM Modules:

  • pam_ldap
  • pam_tally
  • pam_tally2


  • If pam_ldap is enabled (pam_ldap => true) you'll need puppet-ldap
  • If enable_motd is enabled (enable_motd => true) you'll need puppet-motd


  • Testing was done only on pam_ldap parameters


Copyleft (C) 2012 Emiliano Castagnari (a.k.a. Torian)