diff --git a/modules/users.nix b/modules/users.nix
index b6aae22..ef6148e 100644
--- a/modules/users.nix
+++ b/modules/users.nix
@@ -28,7 +28,8 @@
   systemd.services."user@" = { serviceConfig = { Restart = "always"; }; };
 
   home-manager.users.balsoft.home.activation.yubi = {
-    data = "[ -s /home/balsoft/.config/Yubico/u2f_keys ] || (pamu2fcfg > /home/balsoft/.config/Yubico/u2f_keys)";
+    data =
+      "[ -s /home/balsoft/.config/Yubico/u2f_keys ] || (pamu2fcfg > /home/balsoft/.config/Yubico/u2f_keys)";
     after = [ "linkGeneration" ];
     before = [ ];
   };
@@ -47,6 +48,36 @@
     cue = true;
     enable = true;
   };
+
+  security.pam.services = builtins.listToAttrs (builtins.map (name: {
+    inherit name;
+    value = { unixAuth = false; };
+  }) [
+    "chpasswd"
+    "chsh"
+    "groupadd"
+    "groupdel"
+    "groupmems"
+    "groupmod"
+    "i3lock"
+    "i3lock-color"
+    "login"
+    "passwd"
+    "polkit-1"
+    "runuser"
+    "runuser-l"
+    "su"
+    "sudo"
+    "swaylock"
+    "systemd-user"
+    "useradd"
+    "userdel"
+    "usermod"
+    "vlock"
+    "xlock"
+    "xscreensaver"
+  ]);
+
   security.sudo = {
     enable = true;
     extraConfig = ''