Re: [nssldap] restricting users to certain hosts?
[
Date Prev][
Date Next]
[
Thread Prev][
Thread Next]
Re: [nssldap] restricting users to certain hosts?
- From: Buchan Milne <bgmilne [at] mandriva.org>
- To: Adam Williams <awilliam [at] mdah.state.ms.us>
- Cc: nssldap [at] padl.com
- Subject: Re: [nssldap] restricting users to certain hosts?
- Date: Fri, 7 Mar 2008 18:10:57 +0200
On Friday 07 March 2008 18:06:47 Adam Williams wrote:
> Buchan Milne wrote:
> > Add the auxiliary hostObject objectclass, from ldapns.schema, shipped
> > with
> > pam_ldap.
> >
> > Regards,
> > Buchan
>
> Thanks, I'm still not doing something correct, any help?
>
> dn: uid=astewart,ou=People,dc=mdah,dc=state,dc=ms,dc=us
> changetype: modify
> add: objectClass
> objectClass: account
> add: objectClass
> objectClass: hostObject
> add: host
> host: roark
> host: welty
> host: manship
> host: archives4
You need to separate operations with a line with just a hyphen. And don't add
objectclass account, it is structural, and will conflict with your existing
structural, the point of hostobject is to avoid the need for account. Try
this:
dn: uid=astewart,ou=People,dc=mdah,dc=state,dc=ms,dc=us
changetype: modify
add: objectClass
objectClass: hostObject
-
add: host
host: roark
host: welty
host: manship
host: archives4
Regards,
Buchan
- Re: [nssldap] restricting users to certain hosts?, (continued)
RE: [nssldap] restricting users to certain hosts?,
Denis Melnikov