cancel
Showing results for 
Search instead for 
Did you mean: 
t3kg33k
Flight Engineer Flight Engineer
Flight Engineer
  • 2,116 Views

Bypass /etc/nogin with specific user(s)

Jump to solution

Anyone know if there is a way to specify a specific user, or users (a group?), allow access either via ssh or at console when there is a /etc/nogin file present?

I found a thread online that mentions adding the following line to /etc/pam.d/login just before the 'account required pam_nologin.so' line:

account [success=1 default=ignore] pam_succeed_if.so quiet user ingroup group

I've tested this and it's not working for me. I'm testing this in CentOS 7.

Labels (2)
1 Solution

Accepted Solutions
MrA
Flight Engineer
Flight Engineer
  • 2,019 Views

I'm no expert here, but I thought all PAM config must have a verb e.g. requsite, sufficient etc - and sounds like you would want sufficient i.e. let the person through without asking any furhter checks

e.g.

auth required pam_succeed_if.so quiet user ingroup groupname

 

View solution in original post

1 Reply
MrA
Flight Engineer
Flight Engineer
  • 2,020 Views

I'm no expert here, but I thought all PAM config must have a verb e.g. requsite, sufficient etc - and sounds like you would want sufficient i.e. let the person through without asking any furhter checks

e.g.

auth required pam_succeed_if.so quiet user ingroup groupname

 

Join the discussion
You must log in to join this conversation.