Arthur de Jong pam_ldap 8 Version 0.7.1 System Manager's Manual Oct 2009 pam_ldap PAM module for LDAP-based authentication pam_ldap.so ... This is a PAM module that uses an LDAP server to verify user access rights and credentials. use_first_pass Specifies that the PAM module should use the first password provided in the authentication stack and not prompt the user for a password. try_first_pass Specifies that the PAM module should use the first password provided in the authentication stack and if that fails prompt the user for a password. ignore_unknown_user Specifies that the PAM module should return PAM_IGNORE for users that are not present in the LDAP directory. This causes the PAM framework to ignore this module. ignore_authinfo_unavail Specifies that the PAM module should return PAM_IGNORE if it cannot contact the LDAP server. This causes the PAM framework to ignore this module. no_warn Specifies that warning messages should not be propagated to the PAM application. use_authtok This causes the PAM module to use the earlier provided password when chanhing the password. The module will not prompt the user for a new password (it is analogous to use_first_pass). debug This option is ignored. All services are provided by this module but currently only authentication (auth) and password change (password) are implemented in the nslcd daemon. /etc/pam.conf the main PAM configuration file /etc/nslcd.conf The configuration file for the nslcd daemon (see nslcd.conf5) pam.conf5, nslcd8, nslcd.conf5 This manual was written by Arthur de Jong <arthur@arthurdejong.org>.