PAM_WHEEL(8) | Linux-PAM Manual | PAM_WHEEL(8) |
pam_wheel - Only permit root access to members of group wheel
pam_wheel.so [debug] [deny] [group=name] [root_only] [trust]
The pam_wheel PAM module is used to enforce the so-called wheel group. By default it permits access to the target user if the applicant user is a member of the wheel group. If no group with this name exist, the module is using the group with the group-ID 0.
debug
deny
group=name
root_only
trust
The auth and account module types are provided.
PAM_AUTH_ERR
PAM_BUF_ERR
PAM_IGNORE
PAM_PERM_DENY
PAM_SERVICE_ERR
PAM_SUCCESS
PAM_USER_UNKNOWN
The root account gains access by default (rootok), only wheel members can become root (wheel) but Unix authenticate non-root applicants.
su auth sufficient pam_rootok.so su auth required pam_wheel.so su auth required pam_unix.so
pam_wheel was written by Cristian Gafton <gafton@redhat.com>.
06/08/2020 | Linux-PAM Manual |