login restriction

Edgecombe, Jason jwedgeco at uncc.edu
Wed Mar 12 08:41:39 EDT 2008


Try looking at pam_list pam module if you run unix.

Jason Edgecombe
Solaris & Linux Administrator
Mosaic Computing Group, College of Engineering
UNC-Charlotte
Phone: (704) 687-3514
 

-----Original Message-----
From: kerberos-bounces at mit.edu [mailto:kerberos-bounces at mit.edu] On
Behalf Of Marcin N
Sent: Wednesday, March 12, 2008 5:29 AM
To: kerberos at mit.edu
Subject: login restriction

Hello again
I'm wondering if it is possible to make restriction on which hosts users

authorized by kerberos can log on.
For now only users who have local account (so they are in /etc/password 
and /etc/shadow) can log in to the machine.
But is there possibility to control it via any kind of access list or 
something like that - which would be managed on kdc?
i would like to have all users local accounts on every machine and 
decide which user can log to specific machine by setting it on kdc...
is it possible?

Regards
nichu
________________________________________________
Kerberos mailing list           Kerberos at mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos




More information about the Kerberos mailing list