[Date Prev][Date Next]
Re: Restricting Logon permission
Thanks for the help, although I still have a few questions.
I found the host attribute in cosine.schema, however to get this to start
working, dont I have to change something in nsswitch.conf? If so, can you
tell me what the line is supposed to be.
On Wednesday 05 March 2003 03:59 pm, tsg wrote:
> Среда 05 Март 2003 22:26, Wade Winright написал:
> > Can you utilize pam? If you are using Linux or Solaris, I believe this
> > would be the best way to implement this...
> > -----Original Message-----
> > From: Daniel Davidson [mailto:email@example.com]
> > Sent: Wed 3/5/2003 1:04 PM
> > To: OpenLDAP-Software@OpenLDAP.org
> > Cc:
> > Subject: Restricting Logon permission
> > We are working on trying unifying our password database via openldap, and
> > I am looking for a way to restrict logon rights, so only certain people
> > can log onto some servers. For example I do not want everyone to be able
> > to log onto a machine we use for testing applications before we make them
> > public, but it would be nice if we could use ldap for authentication.
> > thanks for any help,
> > Dan
> If You use PAM-LDAP & NSS-LDAP there is attribute "host" in pam-ldap
> schema, where You can list all hosts the User can log in.