Comment 3 for bug 294977

Hmmm. You appear to have missed the action=store, so the cached credentials will never be saved in the first place. My understanding the actions should look something like:

pam_ldap.so use_first_pass
if (authinfo_unavail) {
  pam_ccreds.so action=validate use_first_pass
  pam_ccreds.so action=store
  pam_ccreds.so action=update
} else if (success) {
  pam_ccreds.so action=store
  pam_ccreds.so action=update
} else {
  pam_ccreds.so action=update
}

Where action=validate will check the password with the cached version, and action=store will save it on successful authentication.

I am not really certain what this action=update is - probably need to read the source to find out

Also see <https://help.ubuntu.com/community/PamCcredsHowto>.

Unfortunately I it doesn't seem to install properly either :-(

Selecting previously deselected package libpam-ccreds.
(Reading database ... 172884 files and directories currently installed.)
Unpacking libpam-ccreds (from .../libpam-ccreds_8-1ubuntu1_i386.deb) ...
Setting up libpam-ccreds (8-1ubuntu1) ...
Use of uninitialized value $3 in split at /usr/sbin/pam-auth-update line 237, <INPUT> line 16.
Use of uninitialized value $modline in substitution (s///) at /usr/sbin/pam-auth-update line 239, <INPUT> line 16.
Use of uninitialized value $mod in substitution (s///) at /usr/sbin/pam-auth-update line 242, <INPUT> line 16.
Use of uninitialized value $mod in hash element at /usr/sbin/pam-auth-update line 243, <INPUT> line 16.
Use of uninitialized value $mod in hash element at /usr/sbin/pam-auth-update line 244, <INPUT> line 16.
Use of uninitialized value $modline in concatenation (.) or string at /usr/sbin/pam-auth-update line 258, <INPUT> line 16.

Brian May