Mailing List
Home
Forum Home
Linux - General Red Hat Linux discussion list
Installation - Getting started with Red Hat Linux
Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)
Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)
Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)
Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)
Apache Web Server
Oracle database, Microsoft SQL server ...
Subjects
Subject: application/x mplayer2 plugin
RPM error: db4 error(16) from dbenv >remove: Device or resource
   busy
Command stream end of file while reading
Subject: X Windows problem (xauth)
Subject: Upgrading openoffice 1 1 rpm
Subject: FTP: connection refused
Subject: FTP: connection refused
mount: /dev/cdrom: is not a valid block device
Dell Precision 650, RedHat 9, no sound
how to trace the cause resulting in the crash of bind server
Virus on the list
UNINSTALL RPM MYSQL
usb pen drives: mounting as a user
Subject: broadcom network interface
make mrproper
Couldn 't open PID file /var/run/named/named pid Permission denied
sendmail configuration on redhat
kernel 2 6 and /dev/sound/mixer not found
Subject: Promise 378 controller
Subject: Problem using up2date
mrtg step by step howto/configuration for a newbie?
Compiling and Installing Kernel 2 6
Can 't locate module ppp0, can 't locate module ppp compress 21
Subject: Lotus Notes under Wine
HOW I CAN MAKE BOOTABLE FLOPPY DISKET
/etc/security/limits conf question
Intel E/1000 driver
rpm database corrupt
Command stream end of file while reading
qla2300 modules
 
ldap authorization

ldap authorization

2007-10-10       - By Troy Knabe

 Back
So I have done this and restarted nscd and even rebooted, but still everyone
with an account can access the server.  What I am I missing?

-Troy


-- --Original Message-- --
From: redhat-list-bounces@(protected) [mailto:redhat-list-bounces@(protected)] On
Behalf Of mups.cp
Sent: Wednesday, October 10, 2007 12:40 PM
To: General Red Hat Linux discussion list
Subject: Re: ldap authorization

First create a groupOfUniqueNames objectClass in your ldap and set
uniqueMember with the full dn for those users that should be allowed
access.
In /etc/ldap.conf
pam_groupdn cn=unixusers,ou=Groups,dc=domain,dc=com
Where unixusers is the group with the groupOfUniqueNames objectClass
you defined before.


On 10/10/07, Esquivel, Vicente <Esquivelv@(protected)> wrote:
> I have much interest on how to get pam_groupdn to work because I have
> been battling with it for a few days now with not hope in sight.
>
> Vince
>
> > -- --Original Message-- --
> > From: redhat-list-bounces@(protected)
> > [mailto:redhat-list-bounces@(protected)] On Behalf Of mups.cp
> > Sent: Wednesday, October 10, 2007 2:30 PM
> > To: General Red Hat Linux discussion list
> > Subject: Re: ldap authorization
> >
> > You coud use the pam_groupdn option.
> >
> > On 10/10/07, Troy Knabe <knabe@(protected)> wrote:
> > > I am using Kerberos for authentication and ldap for
> > authorization.  But I want to limit the ldap users who can
> > login to the server to a specific group.
> > >
> > >
> > >
> > > Anyone have any perls of wisdom on what needs to be added
> > to the ldap.conf???
> > >
> > >
> > >
> > > Thanks
> > >
> > > -Troy
> > >
> > >
> > >
> > > --
> > > redhat-list mailing list
> > > unsubscribe
> > mailto:redhat-list-request@(protected)?subject=unsubscribe
> > > https://www.redhat.com/mailman/listinfo/redhat-list
> > >
> >
> > --
> > redhat-list mailing list
> > unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
> > https://www.redhat.com/mailman/listinfo/redhat-list
> >
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list