[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: group access to servers howto

> Here is a senario of what I would like to accomplish.
> Server system are primarily RedHat Linux and Solaris 10.
> User logs in to server system with his/her krb account, su to a non- 
> priveleged user does some work gets out.
> What I want to do is limit user access to particular groups of  
> servers based on a users group affiliation. Example, 6 people  
> belong to group xyz that have access to 10 servers and no others.
> Have any ideas on this?
We use PAM and build users list file (/etc/password equivalent) to  
control access to each server.

Kerberos could be used to limit such things, but given that we have  
password based
logins and rsa-key based login too, its not complete.