NIS questions (hypothetical)
Kevin D. Clark
kevin_d_clark-Wuw85uim5zDR7s880joybQ at public.gmane.org
Tue Mar 3 17:04:13 EST 2009
[I am really far behind on my email]
Jerry Feldman writes:
> let's say I have 3 groups of users, groupa, groupb, and groupc. I want
> to allow groupa to be able to log in to some of the systems. I want
> groupb to be able to log into other systems, and groupc should be able
> to log into all of the systems.
Suggestion: configure your systems to use PAM, and configure the login
mechanisms that you are interested in to use "pam_access" for access
control.
Then in your /etc/security/access.conf, you could include a line like:
+ : @groupa : ALL
...which would allow users in NIS group "groupa" to login to this
particular machine.
Hope this helps,
--kevin
--
GnuPG ID: B280F24E Meet me by the knuckles
alumni.unh.edu!kdc of the skinny-bone tree.
http://kdc-blog.blogspot.com/ -- Tom Waits
More information about the Discuss
mailing list