sshd.pam 1.4 KB

1234567891011121314151617181920212223242526272829303132333435363738394041
  1. # PAM configuration for the Secure Shell service
  2. # Read environment variables from /etc/environment and
  3. # /etc/security/pam_env.conf.
  4. auth required pam_env.so
  5. # Skip Google Authenticator if logging in from the local network.
  6. # auth [success=1 default=ignore] pam_access.so accessfile=/etc/security/access-sshd-local.conf
  7. # Google Authenticator 2-step verification.
  8. # auth requisite pam_google_authenticator.so
  9. # Standard Un*x authentication.
  10. auth include common-auth
  11. # Disallow non-root logins when /etc/nologin exists.
  12. account required pam_nologin.so
  13. # Uncomment and edit /etc/security/access.conf if you need to set complex
  14. # access limits that are hard to express in sshd_config.
  15. # account required pam_access.so
  16. # Standard Un*x authorization.
  17. account include common-account
  18. # Standard Un*x session setup and teardown.
  19. session include common-session
  20. # Print the message of the day upon successful login.
  21. session optional pam_motd.so
  22. # Print the status of the user's mailbox upon successful login.
  23. session optional pam_mail.so standard noenv
  24. # Set up user limits from /etc/security/limits.conf.
  25. session required pam_limits.so
  26. # Set up SELinux capabilities (need modified pam)
  27. # session required pam_selinux.so multiple
  28. # Standard Un*x password updating.
  29. password include common-password