Provided by: winbind_3.0.22-1ubuntu3_i386 bug


       pam_winbind - PAM module for Winbind


       This tool is part of the samba(7) suite.

       pam_winbind  is  a  PAM  module that can authenticate users against the
       local domain by talking to the Winbind daemon.


       pam_winbind supports several options:

       debug  Gives debugging output to syslog.

       require_membership_of=[SID or NAME]
              If this option is set, pam_winbind will only succeed if the user
              is  a  member  of  the  given SID or NAME. A SID can be either a
              group-SID, a alias-SID or even a user-SID. It is  also  possible
              to give a NAME instead of the SID. That name must have the form:
              MYDOMAIN\mygroup orMYDOMAIN\myuser. pam_winbind  will,  in  that
              case,  lookup the SID internally. Note that NAME may not contain
              any spaces. It is thus recommended to only  use  SIDs.  You  can
              verify  the  list  of  SIDs  a  user  is a member of with wbinfo


              By default, pam_winbind tries to get  the  authentication  token
              from  a  previous  module.  If no token is available it asks the
              user for the old password. With this option, pam_winbind  aborts
              with  an error if no authentication token from a previous module
              is available.

              Set the new password to  the  one  provided  by  the  previously
              stacked  password  module. If this option is not set pam_winbind
              will ask the user for the new password.


       wbinfo(1), winbindd(8)


       This man page is correct for version 3.0 of Samba.


       The original Samba software  and  related  utilities  were  created  by
       Andrew  Tridgell.  Samba  is now developed by the Samba Team as an Open
       Source project similar to the way the Linux kernel is developed.

       This manpage was written by Jelmer Vernooij and Guenther Deschner.