summaryrefslogtreecommitdiff
path: root/src/init
diff options
context:
space:
mode:
authorChristian Breunig <christian@breunig.cc>2023-10-03 17:57:30 +0200
committerGitHub <noreply@github.com>2023-10-03 17:57:30 +0200
commite258edd76090f370ff0c0f88382d099d814d85f1 (patch)
tree18123041781a58997896b9187503d298f673ac03 /src/init
parent65934b24809d184b15023955a17aafbb859f7bc1 (diff)
parent9fa024bdbaa861a6066a1e58afb7a7c6a977820c (diff)
downloadvyos-1x-e258edd76090f370ff0c0f88382d099d814d85f1.tar.gz
vyos-1x-e258edd76090f370ff0c0f88382d099d814d85f1.zip
Merge pull request #2330 from c-po/init-T5577
init: T5577: clear mandatory and optional RADIUS/TACACS PAM settings
Diffstat (limited to 'src/init')
-rwxr-xr-xsrc/init/vyos-router4
1 files changed, 2 insertions, 2 deletions
diff --git a/src/init/vyos-router b/src/init/vyos-router
index cf97d4c6e..dd63921e0 100755
--- a/src/init/vyos-router
+++ b/src/init/vyos-router
@@ -235,9 +235,9 @@ cleanup_post_commit_hooks () {
security_reset ()
{
# restore PAM back to virgin state (no radius/tacacs services)
- pam-auth-update --package --remove radius
+ pam-auth-update --disable radius-mandatory radius-optional
rm -f /etc/pam_radius_auth.conf
- pam-auth-update --package --remove tacplus
+ pam-auth-update --disable tacplus-mandatory tacplus-optional
rm -f /etc/tacplus_nss.conf /etc/tacplus_servers
# Certain configuration files are re-generated by the configuration