Package: libpam-runtime
Version: 1.4.0-11ubuntu2.3
Severity: important

Dear Maintainer,

We were trying to configure PAM authentication to use LDAP, Radius, and local 
(pam_unix) authentication sources in that order, so we ran "sudo 
pam-auth-update --enable ldap radius unix".  Alas it's written in the 
descending priority order coming from the /usr/share/pam-configs/ files.

It would be useful to allow the user to override those priorities so I don't 
have to run "pam-auth-update" then "sudoedit /etc/pam.d/common-auth" to achieve 
the ordering I desire.

There might be local policy issues that require a particular ordering,
and it would be good to have the tool be compatible with such policies.


-- System Information:
Debian Release: bookworm/sid
  APT prefers jammy-updates
  APT policy: (500, 'jammy-updates'), (500, 'jammy-security'), (500, 'jammy'), 
(100, 'jammy-backports')
Architecture: amd64 (x86_64)

Kernel: Linux 5.15.0-86-generic (SMP w/10 CPU threads)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages libpam-runtime depends on:
ii  debconf [debconf-2.0]  1.5.79ubuntu1
ii  libpam-modules         1.4.0-11ubuntu2.3

libpam-runtime recommends no packages.

libpam-runtime suggests no packages.

-- debconf information:
  libpam-runtime/profiles: unix, ldap, systemd, capability
  libpam-runtime/title:
  libpam-runtime/no_profiles_chosen:
  libpam-runtime/override: false
  libpam-runtime/conflicts:

Reply via email to