[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Restricting Logon permission

To: OpenLDAP-Software@OpenLDAP.org
Subject: Re: Restricting Logon permission
From: tsg <tsg@bugalux.com>
Date: Wed, 5 Mar 2003 22:59:34 +0100
Content-disposition: inline
Organization: bugalux
User-agent: KMail/1.5

Среда 05 Март 2003 22:26, Wade Winright написал:
> Can you utilize pam? If you are using Linux or Solaris, I believe this
> would be the best way to implement this...
>
>
> -----Original Message-----
> From:	Daniel Davidson [mailto:danield@life.uiuc.edu]
> Sent:	Wed 3/5/2003 1:04 PM
> To:	OpenLDAP-Software@OpenLDAP.org
> Cc:
> Subject:	Restricting Logon permission
> We are working on trying unifying our password database via openldap, and I
> am looking for a way to restrict logon rights, so only certain people can
> log onto some servers.  For example I do not want everyone to be able to
> log onto a machine we use for testing applications before we make them
> public, but it would be nice if we could use ldap for authentication.
>
> thanks for any help,
>
> Dan
If You use PAM-LDAP & NSS-LDAP there is attribute "host" in pam-ldap schema, 
where You can list all hosts the User can log in.
Sergios

Follow-Ups:
- Re: Restricting Logon permission
  - From: Daniel Davidson <danield@life.uiuc.edu>

Prev by Date: Re: OpenLDAP,Kerberos V5 and JASS relationships
Next by Date: updated app schemas?
Index(es):
- Chronological
- Thread