Re: [nssldap] restricting users to certain hosts?
[
Date Prev][
Date Next]
[
Thread Prev][
Thread Next]
Re: [nssldap] restricting users to certain hosts?
- From: Adam Williams <awilliam [at] mdah.state.ms.us>
- Cc: nssldap [at] padl.com
- Subject: Re: [nssldap] restricting users to certain hosts?
- Date: Wed, 05 Mar 2008 09:45:26 -0600
Tony Earnshaw wrote:
Ralf Haferkamp skrev, on 05-03-2008 09:23:
On Dienstag, 4. März 2008, Adam Williams wrote:
I've got several servers...arrowhead, archives3, saxon, etc. I want
to prevent the users from ssh'ing into certain servers. some should
only be able to ssh to arrowhead, others only to archives3, some can
access 2 out of the 3, or all 3, etc. Is it possible to have this
configuration? If so, how?
Yes. Check out the pam_check_host_attr and pam_check_service_attr of
pam_ldap. See the pam_ldap man-page for details.
Seems to me that everyone's forgetting sshd_config AllowUsers - that's
what I use.
--Tonni
well SSH was just an example. there's still ftp, samba, etc.
- Re: [nssldap] restricting users to certain hosts?, (continued)
- Message not available