[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Restricting Logon permission

Thanks for the info! I did not know that. Makes things much easier than what I suggested...

-----Original Message-----
From: tsg [mailto:tsg@bugalux.com]
Sent: Wednesday, March 05, 2003 2:00 PM
To: OpenLDAP-Software@OpenLDAP.org
Subject: Re: Restricting Logon permission

Среда 05 Март 2003 22:26, Wade Winright написал:
> Can you utilize pam? If you are using Linux or Solaris, I believe this
> would be the best way to implement this...
> -----Original Message-----
> From:	Daniel Davidson [mailto:danield@life.uiuc.edu]
> Sent:	Wed 3/5/2003 1:04 PM
> To:	OpenLDAP-Software@OpenLDAP.org
> Cc:
> Subject:	Restricting Logon permission
> We are working on trying unifying our password database via openldap, and I
> am looking for a way to restrict logon rights, so only certain people can
> log onto some servers.  For example I do not want everyone to be able to
> log onto a machine we use for testing applications before we make them
> public, but it would be nice if we could use ldap for authentication.
> thanks for any help,
> Dan
If You use PAM-LDAP & NSS-LDAP there is attribute "host" in pam-ldap schema, 
where You can list all hosts the User can log in.