2 # pam_winbind configuration file
4 # /etc/security/pam_winbind.conf
12 # turn on extended PAM state debugging
15 # request a cached login if possible
16 # (needs "winbind offline logon = yes" in smb.conf)
19 # authenticate using kerberos
22 # when using kerberos, request a "FILE" krb5 credential cache type
23 # (leave empty to just do krb5 authentication but not have a ticket
27 # make successful authentication dependend on membership of one SID
28 # (can also take a name)
29 ;require_membership_of =
31 # password expiry warning period in days
34 # omit pam conversations