Arthur de Jong pam_ldap 8 Version 0.6.10 System Manager's Manual Jun 2009 pam_ldap PAM module for LDAP-based authentication pam_ldap.so ... This is a PAM module that uses an LDAP server to verify user access rights and credentials. use_first_pass Specifies that the PAM module should use the first password provided in the authentication stack and not prompt the user for a password. try_first_pass Specifies that the PAM module should use the first password provided in the authentication stack and if that fails prompt the user for a password. ignore_unknown_user Specifies that the PAM module should return PAM_IGNORE for users that are not present in the LDAP directory. This causes the PAM framework to ignore this module. ignore_authinfo_unavail Specifies that the PAM module should return PAM_IGNORE if it cannot contact the LDAP server. This causes the PAM framework to ignore this module. no_warn Specifies that warning messages should not be propagated to the PAM application. use_authtok This causes the PAM module to use the earlier provided password, analogous to use_first_pass, when the password is changed. debug This option is ignored. All service are provided by this module but currently only authentication (auth) is supported and password change (password) is under development. /etc/pam.conf the main PAM configuration file /etc/nss-ldapd.conf The configuration file for the nslcd daemon (see nss-ldapd.conf5) pam.conf5, nslcd8, nss-ldapd.conf5 This manual was written by Arthur de Jong <arthur@arthurdejong.org>.