Created: 2012-03-21 12:15
Updated: 2014-12-08 13:02
License: mit


Puppet pam_limits module

This module manages pam_limits configuration files (only).


This is the Puppet pam_limits module. It can be used to manage particular limits in single /etc/security/limits.conf or in separate files included from /etc/security/limits.d (if "context" was specified). The second feature is only supported on new systems where Augeas can manage these files.

This module is a mix of other Puppet modules and Wiki, esp.:

to meet these requirements (which other modules didn't):

  • modify conf. files with Augeas only
  • prepend each Puppet managed limit with comment
  • support both limits.conf and includes from limits.d/
  • don't install anything


Module has been tested on:

  • Puppet 2.7
  • Debian 6.0

Quick Start

Configure limit

pam_limits { name:
  ensure   => present or absent,
  filename => configuration file,
  domain   => user or group name, wildcard, 
  type     => soft or hard or -,
  item     => limit name,
  value    => limit value;

Example: set max number of processes for users in group 'student'

pam_limits { 'nproc-student':
  ensure  => present,
  domain  => '@student',
  type    => 'hard',
  item    => 'nproc',
  value   => '20';

CERIT Scientific Cloud, support@cerit-sc.cz

Cookies help us deliver our services. By using our services, you agree to our use of cookies Learn more