#
#  secModeEnable API password validation config : /etc/pam.d/chsecmodeapi
#
#  cmp_hash: compares password hashes to validate that new password is not
#  same as the old password
#
#  set_crypt_env: would (MD5) hash the password and set the hashed value
#  to a PAM environment variable NEWCRYPT to be available to application.
#
#

password	required	pam_fabos.so set_crypt_env cmp_hash max_try=1 \
				never_ask_old
