On Jan 4, 2012, at 2:39 AM, "Craig T" wrote:
> Hi,
>
> Server: RHEL6.2
> Spec: ipa-server-2.1.3-9
>
> 1) After reading the IPA documentation, it seems that HBAC is only available
> to SSSD clients. This would suggest that I'm not going to be able to
> configure it for Solaris hosts?
> "Using
Hi,
You can create netgroups for your Solaris machines. (Example:
"ng_ssh_solaris"). Use these
netgroups when creating your /etc/hosts.allow and /etc/hosts.deny files on
Solaris.
For your Linux machines, create HBAC groups. (Example: "hbac_ssh_linux"), and
apply a HBAC profile
to this HBAC gro