Hi, I'm trying to add some access control to my LDAP so that my Linux users are only able to access certain groups of hosts.
I've managed to achieve this by following the instructions here ... http://directory.fedoraproject.org/wiki/Howto:Netgroups which details how to set up NIS style netgroups, and that all works well. The only problem is that I need to put an access.conf file on all the servers, and I'd like to keep this file also within LDAP. Currently it looks like this... [r...@server pam.d]# more /etc/security/access.netgroup.conf + : root : LOCAL + : @test-users@@test-hosts : ALL - : ALL : ALL which says that all users in the test-users netgroup can access all hosts in the test-hosts netgroup. However, it's going to be a pain to distribute the access.conf (or access.netgroup.conf) file to all hosts. Any suggestions? Steve -- http://purechildren.co.uk http://begreen.wikispaces.com http://technicalbible.wikispaces.com Sent from Netherlands
