2 auth required pam_listfile.so item=user sense=deny file=/etc/security/blacklist.login onerr=succeed
3 auth required pam_securetty.so
4 auth include system-auth
6 account required pam_shells.so
7 account required pam_nologin.so
8 account required pam_access.so
9 account include system-auth
10 password include system-auth
11 # pam_selinux.so close should be the first session rule
12 # session required pam_selinux.so close
13 session required pam_loginuid.so
14 session include system-auth
15 session include postlogin
16 session optional pam_console.so
17 session optional pam_mail.so
18 #session optional pam_motd.so motd=/etc/motd
19 # pam_selinux.so open should only be followed by sessions to be executed in the user context
20 #session required pam_selinux.so open
21 #session optional pam_keyinit.so force revoke
22 -session optional pam_ck_connector.so