Hi... I have a customer with SLES 11 SP1.. They want logins authenticated by their Windoze Active Directory setup. OK, we set up NAT and use Yast / Network Services / Windows Domain Membership to join the AD domain, and have specified "Also Use SMB Information for Linux Authentication". Now they can login with their AD credentials. So far, so good...
They also want to limit who can login to the sysprogs. There is an AD group that defines them, so we could use that but... Things like getent and wbinfo don't seem to return anything. (I can get the full list of users and groups, but not what groups this user is in.) I've seen tons of things in Google, and several that might work, but without being able to get the groups from AD, none work.. How have any of you found to limit AD logins? Thanks... Lee -- Lee Stewart, Senior SE Sirius Computer Solutions Phone: (303) 996-7122 Email: [email protected] Web: www.siriuscom.com ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/
