How to allow cron to run for one particular user even if password is expired? 這個文件中說
Configure the account stack of /etc/pam.d/password-auth and /etc/pam.d/system-auth as :
account     required      pam_access.so
account   [default=1 success=ignore] pam_succeed_if.so user in testuser
account   [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
account     required      pam_unix.so
account     sufficient    pam_localuser.so
account     sufficient    pam_succeed_if.so uid < 500 quiet
account     required      pam_permit.so

這就是說新增
account     required      pam_access.so
account   [default=1 success=ignore] pam_succeed_if.so user in testuser
account   [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid

問題1：
實際情況是
我的使用者名稱是：tibero
使用者所在的組是：dba
這種情況下上面三句指令改怎麼修改

問題2：
修改/etc/pam.d/crond行不行
sed -i.bak '/No PAM/aaccount    sufficient  pam_succeed_if.so   user ingroup dba' /etc/pam.d/crond
這麼修改行不行

這個方法親測有效