login restriction

Marcin N nichu at CUT.onet.pl
Wed Mar 12 05:29:07 EDT 2008


Hello again
I'm wondering if it is possible to make restriction on which hosts users 
authorized by kerberos can log on.
For now only users who have local account (so they are in /etc/password 
and /etc/shadow) can log in to the machine.
But is there possibility to control it via any kind of access list or 
something like that - which would be managed on kdc?
i would like to have all users local accounts on every machine and 
decide which user can log to specific machine by setting it on kdc...
is it possible?

Regards
nichu



More information about the Kerberos mailing list