Forge Home

pam

PAM module for Puppet.

13,198 downloads

12,652 latest version

2.3 quality score

Version information

  • 0.0.7 (latest)
  • 0.0.6
  • 0.0.5
  • 0.0.4
released May 28th 2013

Start using this module

  • r10k or Code Manager
  • Bolt
  • Manual installation
  • Direct download

Add this module to your Puppetfile:

mod 'torian-pam', '0.0.7'
Learn more about managing modules with a Puppetfile

Add this module to your Bolt project:

bolt module add torian-pam
Learn more about using this module with an existing project

Manually install this module globally with Puppet module tool:

puppet module install torian-pam --version 0.0.7

Direct download is not typically how you would use a Puppet module to manage your infrastructure, but you may want to download the module in order to inspect the code.

Download
Tags: debian, redhat, pam

Documentation

torian/pam — version 0.0.7 May 28th 2013

Puppet PAM Module

Introduction

Puppet module to manage PAM configuration.

Usage

Class pam::pamd

No module configuration

class { 'pam::pamd': }

Ldap module

If you want pam_ldap:

class { 'pam::pamd': pam_ldap => true, } Or even if you need a specific behavoir on auth:

class { 'pam::pamd': pam_ldap => true, pam_ldap_auth => '[success=1 default=ignore] pam_ldap.so use_first_pass' }

Note: otherwise, pam_ldap_auth defaults to 'sufficient pam_ldap.so use_first_pass'

Notes

Tested on

  • Debian: Etch / Squeeze / Wheezy
  • Redhat: 5.x / 6.x
  • OVS: 2.x / 3.x
  • OpenSuSE 12.x / SLES 11.x

Tested PAM Modules:

  • pam_ldap
  • pam_tally
  • pam_tally2

Requirements

  • If pam_ldap is enabled (pam_ldap => true) you'll need puppet-ldap
  • If enable_motd is enabled (enable_motd => true) you'll need puppet-motd

TODO

  • Testing was done only on pam_ldap parameters

CopyLeft

Copyleft (C) 2012 Emiliano Castagnari ecastag@gmail.com (a.k.a. Torian)