# /etc/pam.d/common-account - authorization settings common to most services.
# "Is this user allowed to use this machine?"
# jimc hacks for Kerberos (krb5) authentication

account	required	pam_nologin.so
# Each mechanism has its own authorization items such as password aging.
account	required	pam_krb5.so	ignore_unknown_principals
account	required	pam_ldap.so	use_first_pass ignore_unknown_user ignore_authinfo_unavail
account	required	pam_unix2.so	use_first_pass