auth       required	/lib/security/pam_env.so
auth       required	/lib/security/pam_cups.so debug # stored auth-token
auth       sufficient	/lib/security/pam_unix.so likeauth nullok # get auth-token,local users don't use pam_cifs
auth       required	/lib/security/pam_cifs.so debug # stored auth-token
auth       sufficient	/lib/security/pam_ldap.so use_first_pass debug
auth       required	/lib/security/pam_deny.so

account    sufficient	/lib/security/pam_ldap.so debug
account    required	/lib/security/pam_unix.so

password   required	/lib/security/pam_cracklib.so retry=3
password   sufficient	/lib/security/pam_ldap.so debug
password   sufficient	/lib/security/pam_unix.so nullok md5 shadow use_authtok
password   required	/lib/security/pam_deny.so

session    required	/lib/security/pam_limits.so
session    required	/lib/security/pam_mkhomedir.so umask=077 skel=/etc/skel
session    sufficient	/lib/security/pam_ldap.so debug
session    required	/lib/security/pam_unix.so
session    optional	/lib/security/pam_cups.so use_first_pass debug min_uid=1000 
session    optional	/lib/security/pam_cifs.so use_first_pass debug min_uid=1100 make_mount_point linkname=cifs prefix=/var suffix=/cifs