I’m relatively new to SLES, and I’ve really struggled to get my head
around PAM configuration. Mostly there now, but the biggest hurdle by
far was getting SHA256 hashes on my shadow passwords.
The updated documentation for PAM_UNIX2 points me in the right
direction, but it’s not at all clear. Hopefully this will help any
other newcomers with the same issue.
Start with a default config:
pam-config -c
then update /etc/default/passwd and change as follows:
sudo /sbin/yast
Security and Users
Local Security
Password Settings
Password Encryption Method.
I think that is the right way to go, though on my SLES 11 (no SP)
machine I do not see SHA256 as an option so your way may expost other
options not yet enabled in Yast. Just be careful that the next time you
use Yast it doesn’t overwrite your manually-made changes.
Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/