pam_wheel - Only permit root access to members of group wheel
pam_wheel.so [debug] [deny] [group=name] [root_only] [trust]
The pam_wheel PAM module is used to enforce the so-called wheel group. By default it permits access to the target user if the applicant user is a member of the wheel group. If no group with this name exist, the module is using the group with the group-ID 0.
MODULE TYPES PROVIDED¶
The auth and account module types are provided.
The root account gains access by default (rootok), only wheel members can become root (wheel) but Unix authenticate non-root applicants.
su auth sufficient pam_rootok.so su auth required pam_wheel.so su auth required pam_unix.so
pam_wheel was written by Cristian Gafton <email@example.com>.