Re: Bypassing PAM modules for particular groups in Linux
It should work with pam_succeed_if, you can check the manual for full details.
I.E.
account required pam_succeed_if.so uid>=200 shell=bash
- field < number
- Field has a value numerically less than number.
- field <= number
- Field has a value numerically less than or equal to number.
- field eq number
- Field has a value numerically less equal to number.
- field >= number
- Field has a value numerically greater than or equal to number.
- field > number
- Field has a value numerically greater than number.
- field ne number
- Field has a value numerically different from number.
- field = string
- Field exactly matches the given string.
- field != string
- Field does not match the given string.
- field =~ glob
- Field matches the given glob.
- field !~ glob
- Field does not match the given glob.
- field in item:item:...
- Field is contained in the list of items separated by colons.
- field notin item:item:...
- Field is not contained in the list of items separated by colons.
- user ingroup group
- User is in given group.
- user notingroup group
- User is not in given group.
- user innetgr netgroup
- (user,host) is in given netgroup.
- user notinnetgr group
- (user,host) is not in given netgroup.
----
_______________________________________________
Pam-list mailing list
Pam-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/pam-list
[Home]
[Kernel List]
[Red Hat Install]
[Linux for the blind]
[Red Hat Watch List]
[Gimp]
[Kerberos: The Definitive Guide]
