#%PAM-1.0 auth required pam_securetty.so # ### FROM system-auth auth required pam_env.so auth sufficient pam_listfile.so onerr=fail item=user sense=allow file=/etc/security/console.autologin auth requisite pam_unix.so likeauth nullok # In case somebody adds a user w/o pam, on successful login, create the smbpass entry. auth optional pam_smbpass.so migrate nullok nodelay debug audit # auth sufficient pam_unix.so likeauth nullok # auth required pam_deny.so # ### END FROM system-auth # auth include system-auth auth required pam_nologin.so account include system-auth password include system-auth session include system-auth session optional pam_console.so