pam

PAM module for Puppet.

Emiliano Castagnari

torian

12,351 downloads

11,841 latest version

2.3 quality score

Version information

  • 0.0.7 (latest)
  • 0.0.6
  • 0.0.5
  • 0.0.4
released May 28th 2013

Start using this module

Tags: pam, debian, redhat

Documentation

torian/pam — version 0.0.7 May 28th 2013

Puppet PAM Module

Introduction

Puppet module to manage PAM configuration.

Usage

Class pam::pamd

No module configuration

class { 'pam::pamd': }

Ldap module

If you want pam_ldap:

class { 'pam::pamd': pam_ldap => true, } Or even if you need a specific behavoir on auth:

class { 'pam::pamd': pam_ldap => true, pam_ldap_auth => '[success=1 default=ignore] pam_ldap.so use_first_pass' }

Note: otherwise, pam_ldap_auth defaults to 'sufficient pam_ldap.so use_first_pass'

Notes

Tested on

  • Debian: Etch / Squeeze / Wheezy
  • Redhat: 5.x / 6.x
  • OVS: 2.x / 3.x
  • OpenSuSE 12.x / SLES 11.x

Tested PAM Modules:

  • pam_ldap
  • pam_tally
  • pam_tally2

Requirements

  • If pam_ldap is enabled (pam_ldap => true) you'll need puppet-ldap
  • If enable_motd is enabled (enable_motd => true) you'll need puppet-motd

TODO

  • Testing was done only on pam_ldap parameters

CopyLeft

Copyleft (C) 2012 Emiliano Castagnari ecastag@gmail.com (a.k.a. Torian)