diff --git a/etc/pam.d/crond b/etc/pam.d/crond
new file mode 100644
index 0000000..59b58e5
--- /dev/null
+++ b/etc/pam.d/crond
@@ -0,0 +1,10 @@
+#
+# The PAM configuration file for the cron daemon
+auth        sufficient      pam_rootok.so
+#
+# deny cron-access to users listed in the /etc/cron.deny file
+#
+auth    required  pam_unix.so quiet
+account required  pam_listfile.so onerr=succeed item=user sense=deny file=/etc/cron.deny
+account required  pam_unix.so
+session required  pam_unix.so
diff --git a/etc/pam.d/elager b/etc/pam.d/elager
new file mode 100644
index 0000000..704376b
--- /dev/null
+++ b/etc/pam.d/elager
@@ -0,0 +1,2 @@
+auth	required	pam_unix.so shadow nodelay
+account	required	pam_unix.so
diff --git a/etc/pam.d/imap b/etc/pam.d/imap
new file mode 100644
index 0000000..7d9d6c2
--- /dev/null
+++ b/etc/pam.d/imap
@@ -0,0 +1,2 @@
+auth        required       pam_unix.so
+account     required       pam_unix.so
diff --git a/etc/pam.d/kde b/etc/pam.d/kde
new file mode 100644
index 0000000..cac6f86
--- /dev/null
+++ b/etc/pam.d/kde
@@ -0,0 +1,5 @@
+auth        requisite      pam_nologin.so
+auth        required       pam_securetty.so
+auth        required       pam_env.so
+auth        required       pam_unix.so
+
diff --git a/etc/pam.d/lightdm b/etc/pam.d/lightdm
new file mode 100644
index 0000000..fed8a9b
--- /dev/null
+++ b/etc/pam.d/lightdm
@@ -0,0 +1,20 @@
+#%PAM-1.0
+
+# Block login if they are globally disabled
+auth      required pam_nologin.so
+
+# Load environment from /etc/environment and ~/.pam_environment
+auth      required pam_env.so
+
+# Use /etc/passwd and /etc/shadow for passwords
+auth      required pam_unix.so
+
+# Check account is active, change password if required
+account   required pam_unix.so
+
+# Allow password to be changed
+password  required pam_unix.so
+
+# Setup session
+session   required pam_unix.so
+session   optional pam_systemd.so
diff --git a/etc/pam.d/lightdm-greeter b/etc/pam.d/lightdm-greeter
new file mode 100644
index 0000000..9a6862b
--- /dev/null
+++ b/etc/pam.d/lightdm-greeter
@@ -0,0 +1,17 @@
+#%PAM-1.0
+
+# Load environment from /etc/environment and ~/.pam_environment
+auth      required pam_env.so
+
+# Always let the greeter start without authentication
+auth      required pam_permit.so
+
+# No action required for account management
+account   required pam_permit.so
+
+# Can't change password
+password  required pam_deny.so
+
+# Setup session
+session   required pam_unix.so
+session   optional pam_systemd.so
diff --git a/etc/pam.d/login b/etc/pam.d/login
new file mode 100644
index 0000000..cee1d57
--- /dev/null
+++ b/etc/pam.d/login
@@ -0,0 +1,15 @@
+auth        requisite      pam_nologin.so
+auth        required       pam_securetty.so
+auth        required       pam_env.so
+auth        required       pam_unix.so
+auth        required       pam_shells.so
+
+account     required       pam_access.so
+account     required       pam_unix.so
+session     required       pam_motd.so
+session     required       pam_limits.so
+#session     optional       pam_mail.so      dir=/var/mail standard
+session     optional       pam_lastlog.so
+session     required       pam_unix.so
+password    required       pam_unix.so      md5 shadow
+session    required     pam_loginuid.so
diff --git a/etc/pam.d/other b/etc/pam.d/other
new file mode 100644
index 0000000..0e377b9
--- /dev/null
+++ b/etc/pam.d/other
@@ -0,0 +1,12 @@
+# Begin /etc/pam.d/other
+
+auth        required        pam_deny.so
+auth        required        pam_warn.so
+account     required        pam_deny.so
+account     required        pam_warn.so
+password    required        pam_deny.so
+password    required        pam_warn.so
+session     required        pam_deny.so
+session     required        pam_warn.so
+
+# End /etc/pam.d/other
diff --git a/etc/pam.d/passwd b/etc/pam.d/passwd
new file mode 100644
index 0000000..f586f2c
--- /dev/null
+++ b/etc/pam.d/passwd
@@ -0,0 +1,5 @@
+# Begin /etc/pam.d/passwd
+
+password    required       pam_unix.so      md5 shadow
+
+# End /etc/pam.d/passwd
diff --git a/etc/pam.d/pop b/etc/pam.d/pop
new file mode 100644
index 0000000..7d9d6c2
--- /dev/null
+++ b/etc/pam.d/pop
@@ -0,0 +1,2 @@
+auth        required       pam_unix.so
+account     required       pam_unix.so
diff --git a/etc/pam.d/sieve b/etc/pam.d/sieve
new file mode 100644
index 0000000..7d9d6c2
--- /dev/null
+++ b/etc/pam.d/sieve
@@ -0,0 +1,2 @@
+auth        required       pam_unix.so
+account     required       pam_unix.so
diff --git a/etc/pam.d/smtp b/etc/pam.d/smtp
new file mode 100644
index 0000000..7d9d6c2
--- /dev/null
+++ b/etc/pam.d/smtp
@@ -0,0 +1,2 @@
+auth        required       pam_unix.so
+account     required       pam_unix.so
diff --git a/etc/pam.d/sshd b/etc/pam.d/sshd
new file mode 100644
index 0000000..e2a3ec1
--- /dev/null
+++ b/etc/pam.d/sshd
@@ -0,0 +1,16 @@
+auth        requisite      pam_nologin.so
+#auth        required       pam_securetty.so
+auth        required       pam_env.so
+auth        required       pam_unix.so
+auth        required       pam_google_authenticator.so nullok no_increment_hotp
+auth        required       pam_shells.so
+account     required       pam_access.so
+account     required       pam_unix.so
+#session     required       pam_motd.so
+session     required       pam_limits.so
+#session     optional       pam_mail.so      dir=/var/mail standard
+#session     optional       pam_lastlog.so
+session     required       pam_unix.so
+password    required       pam_unix.so      md5 shadow
+session    required     pam_loginuid.so
+session    optional     pam_systemd.so
diff --git a/etc/pam.d/su b/etc/pam.d/su
new file mode 100644
index 0000000..a4ccffd
--- /dev/null
+++ b/etc/pam.d/su
@@ -0,0 +1,9 @@
+auth        sufficient      pam_rootok.so
+auth        required        pam_unix.so
+auth        required       pam_shells.so
+account     required        pam_unix.so
+#session     optional        pam_mail.so     dir=/var/mail standard
+session     optional        pam_xauth.so
+session     required        pam_limits.so
+session     required        pam_env.so
+session     required        pam_unix.so
diff --git a/etc/pam.d/sudo b/etc/pam.d/sudo
new file mode 100644
index 0000000..5f59595
--- /dev/null
+++ b/etc/pam.d/sudo
@@ -0,0 +1,7 @@
+auth        sufficient      pam_rootok.so
+auth        required        pam_unix.so
+auth        required       pam_shells.so
+account     required        pam_unix.so
+session     optional        pam_mail.so     dir=/var/mail standard
+session     required        pam_unix.so
+
diff --git a/etc/pam.d/system-auth b/etc/pam.d/system-auth
new file mode 100644
index 0000000..726779e
--- /dev/null
+++ b/etc/pam.d/system-auth
@@ -0,0 +1,16 @@
+auth        required       pam_nologin.so
+auth        required       pam_shells.so
+auth        required       pam_securetty.so
+auth        required       pam_env.so
+auth        required       pam_unix.so
+
+account     required       pam_access.so
+account     required       pam_unix.so
+
+password    required       pam_unix.so      md5 shadow
+
+session     required       pam_unix.so
+session     required       pam_limits.so
+
+session     required       pam_loginuid.so
+session     optional       pam_systemd.so
diff --git a/etc/pam.d/xscreensaver b/etc/pam.d/xscreensaver
new file mode 100644
index 0000000..bdc8e19
--- /dev/null
+++ b/etc/pam.d/xscreensaver
@@ -0,0 +1,6 @@
+auth        requisite      pam_nologin.so
+auth        required       pam_securetty.so
+auth        required       pam_env.so
+auth        required       pam_shells.so
+auth        required       pam_unix.so
+