Fedora Linux Support Community & Resources Center
Prev Previous Post   Next Post Next
Old 20th December 2010, 06:08 AM
chakkerz Offline
Registered User
Join Date: Dec 2010
Posts: 8
sssd is a default permit setup?

Hello there

I'm a complete newcomer to sssd, lured by the promise of caching credentials. I've played with it for about 3 hours now (on RHEL6) and so far all is going great but I've come up against a problem:

I have a bunch of people in my ldap who belong to various groups but not all of them have access to individual servers. So, I'd like to disallow their logging in to my hosts. Previously we set /etc/security/access.conf to exclude the groups in question, and really that wasn't a great solution because I'd set allow and deny for each group. I can do the same thing in effect in sssd by filtering the groups I don't want to allow to log in, but, really I would like to set the people I want to allow login instead.

Now I figure I can do this in pam.d somehowby requiring it to look at access.conf rather than going with the default example which gets around this, but really, I'd prefer not to stray too far of the beaten pam.d track. and washoping that I'm just missing some simple setting in sssd.conf.

Any thoughts on how I can achieve this easily, or if this is a pam thing, where I can find some information about this. I've not had a lot of luck finding much sssd related things and RHEL and sssd's guides are lacking the depth I seek (or I'm just blind )

Any help appreciated!

Reply With Quote

ldap, pam, pam.d, sssd, sssd.conf

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] sssd ??? GoinEasy9 F16 Development 0 4th April 2010 02:41 AM
permit required for sheetrock??? hiberphoptik Wibble 5 13th March 2009 01:50 AM
Default login setup madhuti Using Fedora 6 21st February 2008 10:10 AM
Setup KDE as default desktop satimis Using Fedora 7 27th September 2004 04:38 PM

Current GMT-time: 15:42 (Monday, 21-08-2017)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat