How can I prevent a user principal from accessing a kerberoized service/host?
Javier Palacios
javiplx at gmail.com
Mon Nov 26 12:10:10 EST 2007
On Nov 25, 2007 8:40 AM, Amir Saad <eng__amir at hotmail.com> wrote:
>
> I use MIT Kerberos 5 & OpenLDAP to manage my network users. I can login successfully to all machines using my Kerberos principal. I need to create a limited account that is able to access only a few hosts/services not all machines/services. How can I do this?
It is not too flexible, but search for pam_groupdn and pam_member_attribute.
Javier Palacios
More information about the Kerberos
mailing list