1# Test force_first_pass without an authtok. -*- conf -*- 2# 3# Written by Russ Allbery <eagle@eyrie.org> 4# Copyright 2014, 2020 Russ Allbery <eagle@eyrie.org> 5# Copyright 2010-2011 6# The Board of Trustees of the Leland Stanford Junior University 7# 8# SPDX-License-Identifier: BSD-3-clause or GPL-1+ 9 10[options] 11 auth = force_first_pass no_ccache debug 12 account = no_ccache debug 13 session = no_ccache debug 14 15[run] 16 authenticate = PAM_AUTH_ERR 17 acct_mgmt = PAM_IGNORE 18 open_session = PAM_SUCCESS 19 close_session = PAM_SUCCESS 20 21[output] 22 DEBUG pam_sm_authenticate: entry 23 DEBUG (user %u) no stored password 24 NOTICE authentication failure; logname=%u uid=%i euid=%i tty= ruser= rhost= 25 DEBUG pam_sm_authenticate: exit (failure) 26 DEBUG pam_sm_acct_mgmt: entry 27 DEBUG skipping non-Kerberos login 28 DEBUG pam_sm_acct_mgmt: exit (ignore) 29 DEBUG pam_sm_open_session: entry 30 DEBUG pam_sm_open_session: exit (success) 31 DEBUG pam_sm_close_session: entry 32 DEBUG pam_sm_close_session: exit (success) 33