Here is what you asked for..... http://www.tldp.org/HOWTO/User-Authentication-HOWTO/x115.html#AEN153 Under "control" section discussing "sufficient"..... "If authentication by this module is successful, PAM will grant authentication, even if a previous required module failed." Chris On Tue, 2006-01-31 at 09:50 +0100, Tomas Mraz wrote: > On Mon, 2006-01-30 at 15:18 -0800, Christian Seberino wrote: > > I'm confused about "sufficient" because docs > > suggest it can override a failed "required" test! > Nope, sufficient can't override failed required module if the sufficient > module is called after the required module. Could you please specify > where the documentation states otherwise so it can be fixed?
Attachment:
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Pam-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/pam-list
