[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: managing workstation access.

On Tue, Jun 24, 2003 at 01:03:49PM -0700, Jason C. Leach wrote:
> Does anyone have some good ideas on how to manage workstation
> access with LDAP.  For example, if I add a user to the LDAP DB
> they get access (an account) on all workstations A, B and C.
> But suppose I dont' want them to have access to workstation C?
> Can I limit that some how?

We use the following combo:
  pam_access.so + /etc/security/access.conf + netgroups

I maintain the access.conf files on all the workstations via cfengine.


Luca Filipozzi, ECE Dept. IT Manager, University of British Columbia
gpgkey 5A827A2D - A149 97BD 188C 7F29 779E  09C1 3573 32C4 5A82 7A2D