#%PAM-1.0
auth        required      pam_env.so
auth        sufficient    pam_unix.so try_first_pass nullok
auth        required      pam_deny.so

account    required     pam_nologin.so
account    include      system-auth

password   include      system-auth
password    sufficient    pam_unix.so try_first_pass use_authtok nullok md5 shadow
password    required      pam_deny.so

session    optional     pam_keyinit.so force revoke
session    include      system-auth
session    required     pam_loginuid.so

auth       required     pam_listfile.so onerr=fail item=user sense=allow file=/etc/ictgateusers
