nss.shell.emergency.enabled
This configuration parameter specifies whether to use the default login shell when a user or group attempting to access the computer is not allowed to log in.
The default no-login shell and its location is typically platform-specific. For example, on machines running Red Hat Linux, the default shell for users who are denied access is:
/sbin/nologin
The default for this parameter is false, which means that the nologin shell configured in nss.shell.nologin is returned.