.\"     Title: pam_localuser
.\"    Author: 
.\" Generator: DocBook XSL Stylesheets v1.73.1 <http://docbook.sf.net/>
.\"      Date: 04/16/2008
.\"    Manual: Linux-PAM Manual
.\"    Source: Linux-PAM Manual
.\"
.TH "PAM_LOCALUSER" "8" "04/16/2008" "Linux-PAM Manual" "Linux\-PAM Manual"
.\" disable hyphenation
.nh
.\" disable justification (adjust text to left margin only)
.ad l
.SH "NAME"
pam_localuser - require users to be listed in /etc/passwd
.SH "SYNOPSIS"
.HP 17
\fBpam_localuser\.so\fR [debug] [file=\fI/path/passwd\fR]
.SH "DESCRIPTION"
.PP
pam_localuser is a PAM module to help implementing site\-wide login policies, where they typically include a subset of the network\'s users and a few accounts that are local to a particular workstation\. Using pam_localuser and pam_wheel or pam_listfile is an effective way to restrict access to either local users and/or a subset of the network\'s users\.
.PP
This could also be implemented using pam_listfile\.so and a very short awk script invoked by cron, but it\'s common enough to have been separated out\.
.SH "OPTIONS"
.PP
.PP
\fBdebug\fR
.RS 4
Print debug information\.
.RE
.PP
\fBfile=\fR\fB\fI/path/passwd\fR\fR
.RS 4
Use a file other than
\fI/etc/passwd\fR\.
.RE
.SH "MODULE SERVICES PROVIDED"
.PP
All services (\fBaccount\fR,
\fBauth\fR,
\fBpassword\fR
and
\fBsession\fR) are supported\.
.SH "RETURN VALUES"
.PP
.PP
PAM_SUCCESS
.RS 4
The new localuser was set successfull\.
.RE
.PP
PAM_SERVICE_ERR
.RS 4
No username was given\.
.RE
.PP
PAM_USER_UNKNOWN
.RS 4
User not known\.
.RE
.SH "EXAMPLES"
.PP
Add the following line to
\fI/etc/pam\.d/su\fR
to allow only local users in group wheel to use su\.
.sp
.RS 4
.nf
account sufficient pam_localuser\.so
account required pam_wheel\.so
      
.fi
.RE
.sp
.SH "FILES"
.PP
\fI/etc/passwd\fR
.RS 4
Local user account information\.
.RE
.SH "SEE ALSO"
.PP

\fBpam.conf\fR(5),
\fBpam.d\fR(8),
\fBpam\fR(8)
.SH "AUTHOR"
.PP
pam_localuser was written by Nalin Dahyabhai <nalin@redhat\.com>\.