Hi Jose, for host attribute on users you can use this module:
https://www.ldap-account-manager.org/static/doc/manual/ch04s02.html#idp53969168 For groups maybe you can use NIS netgroups. But I cannot tell how to configure this on Linux side. https://www.ldap-account-manager.org/static/doc/manual/ch04s15.html Best regards Roland On 28.08.2015 14:24, Gomez-Rubio, J L. wrote: > Roland, > > I’ve already got user login per host access setup as described at > https://www.ldap-account-manager.org/static/doc/manual-onePage/index.html#idp41637792 > > How do I set it up so it works on a group? I am using groupOfNames with > rfc2307bisPosixGroup. > > I was googling for answers and came across > http://thornelabs.net/2013/02/01/linux-restrict-server-login-via-ldap-hostobject-objectclass-and-host-attribute.html > which mentioned 'Be aware, this solution does not scale well. If a new > client sever comes online it will have to be added to every LDAP user needing > access. This can of course be scripted, but a more scaleable solution is to > use LDAP groups.’ but the author does not say how to configure LDAP. > > Thanks for replying! > > Jose > > > > ------------------------------------------------------------------------------ > > > > _______________________________________________ > Lam-public mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/lam-public >
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Lam-public mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/lam-public
