Hi! Struggled with this bug for a few days and tried various approaches, including removing the pam_deny.so in common-account. Turned out to be a bad idea, as adding new users to the system resulted in a chfn error.
I ended up with the following solution, which doesn't break pam-auth-update. Change the common-account file in /usr/share/pam, and replace "requisite" with "optional". Run pam-auth-update and make sure that the /etc files are updated. pam-ccreds should now work properly (tested on debian wheezy). Raymond Pettersen
