Kwan,
Is it worthy to follow http://www.redhat.com/f/pdf/rhas/NetgroupWhitepaper.pdf kind of setup?
Regarding your point:
Create Host Based access
1. Add the 61ldapns.ldif file to /etc/dirsrv/instancename/schema => Done
2.Edit /etc/ldap.conf and enable pam_check_host_attr => Done
2010/1/12 Ajeet S Raina <ajeetraina@gmail.com>:
>This is how I did it:
> Say I have a 389 Client Machine 10.209.33.77
> Now if I add this hostname
> So that user can only access this Host and not the other Right?
>
> Pls clarify.How can I stop a particular user to access only that machine?
Create Host Based access
Add the 61ldapns.ldif file to /etc/dirsrv/instancename/schema
edit /etc/ldap.conf and enable pam_check_host_attr
Go to the management console, then:
From the Account Listing
Select Field in ObjectClass
Add Value
Select HostObject
Select Add Attribute
Select Host
Enter first host
Select Host
Enter Add Value
Enter second host
Continue for all hosts
https://sites.google.com/site/disciplinux/linux/centralized-authentication
>
--
389 users mailing list
389-users@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/389-users