provides functionality for only one PAM category: account management. In terms of the
” feature.
NoLogin Account Management Module
The NoLogin account management component,
pam_sm_acct_mgmt(), verifies whether logins are administratively disabled via
nologin(5). It returns success if the user's login class has an "ignorenologin" capability specified in
login.conf(5) or the
nologin(5) file does not exist. If neither condition is met, then the contents of
nologin(5) are echoed before failure is returned. The location of
nologin(5) is specified by a "nologin" capability in
login.conf(5), which defaults to
/var/run/nologin.
The following options may be passed to the module:
-
debug
-
syslog(3) debugging information at
LOG_DEBUG level.
-
no_warn
-
suppress warning messages to the user. These messages include reasons why the user's login attempt was declined.