summaryrefslogtreecommitdiffstats
path: root/redhat/frr.pam
blob: a574c5e5756973e85c8628d5340dbca851a88ba8 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
#%PAM-1.0
#

##### if running frr as root:
# Only allow root (and possibly wheel) to use this because enable access
# is unrestricted.
auth	sufficient	pam_permit.so
account	sufficient	pam_permit.so

# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth       sufficient   pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel" group.
#auth       required     pam_wheel.so use_uid
###########################################################

# If using frr privileges and with a seperate group for vty access, then
# access can be controlled via the vty access group, and pam can simply
# check for valid user/password, eg:
#
# only allow local users.
#auth       required     pam_securetty.so
#auth       include      system-auth
#auth       required     pam_nologin.so
#account    include      system-auth
#password   include      system-auth
#session    include      system-auth
#session    optional     pam_console.so