# /etc/pam.d/common-auth - authentication settings common to all services
#
# ::maintainer::
# ::do_not_edit::
#
# This file is included from other service-specific PAM config files,
# and should contain a list of the authentication modules that define
# the central authentication scheme for use on the system
# (e.g., /etc/shadow, LDAP, Kerberos, etc.).  The default is to use the
# traditional Unix authentication mechanisms.
#
#ubuntu version
#auth	[success=1 default=ignore]	pam_unix.so
#auth	required			pam_ldap.so use_first_pass
#auth	required			pam_permit.so

#devua version
#auth	sufficient	pam_unix.so nullok_secure
#auth	requisite	pam_succeed_if.so uid >= 1000 quiet
#auth	sufficient	pam_ldap.so use_first_pass
#auth	required	pam_deny.so

auth	[success=2 default=ignore]	pam_unix.so
auth	requisite			pam_succeed_if.so uid >= 1000 quiet
auth	required			pam_ldap.so use_first_pass
auth	required			pam_permit.so
