On Thu, 2008-08-07 at 12:32 -0600, Mike Lovell wrote: > So another LDAP question for the list. How could one set up host > permissions using LDAP? For example, in the environment I am going to be > deploy this in there are a few classes of machines. Some admins for one > class of machine, say the web servers, doesn't need to be able to log in > to another class of machines, like the dns servers. Is there a way I can > set up group permissions so that admins can only log into groups of > machines to which they have permission? Thanks for any suggestions you > might have.
/etc/security/access.conf will probably accomplish this. You would set up each machine's access.conf to allow only certain groups. Then just add the correct users to those groups. Corey
signature.asc
Description: This is a digitally signed message part
/* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
