sounds good on paper...
...but the documentation is a bit thin, so it's hard to get working on popular distributions like Red Hat Linux 9 or RHEL 3.
The example PAM configs don't seem to help. Even with debug on, I'm not getting anything in /var/log/messages to help.
If I can get this to work as advertised I'll be in nirvana. Right now I'm stuck a bit south of that place in the land that PAM built.
I'm working for a company that is trying to migrant our workstations from Windows to Linux, and this is exactly the sort of thing we needed.
There's one feature that would be nice, though, that doesn't seem to be possible; as it is right now, it's possible to set the gid on shares to the user's name, but that's only useful if every user has their own group. Instead, would it be possible to set the gid to the user's main group? We have about 100 users and around 5 main groups, so that would be very nice.
Nonetheless, excellent job!
Now this should help a lot of ISPs with shell accounts or linux desktops in a network.
A map/reduce framework for processing large RDF data sets.
A two-factor authentication system.