From owner-freebsd-questions@FreeBSD.ORG Tue May 19 15:53:17 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DFAEA1065673; Tue, 19 May 2009 15:53:17 +0000 (UTC) (envelope-from h.schmalzbauer@omnilan.de) Received: from host.omnilan.net (host.omnilan.net [62.245.232.135]) by mx1.freebsd.org (Postfix) with ESMTP id 66EA48FC0A; Tue, 19 May 2009 15:53:17 +0000 (UTC) (envelope-from h.schmalzbauer@omnilan.de) Received: from titan.flintsbach.schmalzbauer.de (titan.flintsbach.schmalzbauer.de [172.21.1.150]) (authenticated bits=0) by host.omnilan.net (8.13.8/8.13.8) with ESMTP id n4JFrDUW037946 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 19 May 2009 17:53:16 +0200 (CEST) (envelope-from h.schmalzbauer@omnilan.de) Message-ID: <4A12D5E9.5060109@omnilan.de> Date: Tue, 19 May 2009 17:53:13 +0200 From: Harald Schmalzbauer Organization: OmniLAN User-Agent: Thunderbird 2.0.0.21 (X11/20090425) MIME-Version: 1.0 To: "O. Hartmann" References: <49F56337.8040900@zedat.fu-berlin.de> In-Reply-To: <49F56337.8040900@zedat.fu-berlin.de> X-Enigmail-Version: 0.95.6 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig9719598ED429A4CEF3573244" Cc: freebsd-current@freebsd.org, freebsd-questions@freebsd.org Subject: Re: PAM/ldap_pam/NFSv4: How let users of a speicific group log into a specific box? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 May 2009 15:53:18 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig9719598ED429A4CEF3573244 Content-Type: text/plain; charset=ISO-8859-15; format=flowed Content-Transfer-Encoding: quoted-printable O. Hartmann schrieb am 27.04.2009 09:48 (localtime): =2E.. > This is what I wish to get and need: >=20 > A simple capability of selecting users into a specific group. Members o= f=20 > such a group should then log into a set of specific hosts. > Infrastructure is FreeBSD 8.0-CURRENT/amd64 and some 7.2-STABLE boxes=20 > (acting as server) as well as OpenLDAP backend. I've done something similar with specifying allowed hosts per user with=20 pam_ldap required for "account". Let me know if this was an option for you. Regards, -Harry --------------enig9719598ED429A4CEF3573244 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (FreeBSD) iEYEARECAAYFAkoS1ekACgkQLDqVQ9VXb8h3nQCeLEQ4+75nlT1nrDYjzbR1ysNA 0qYAn2+n1LIHPkdHGkNNem8ZIhrNQkYv =eg2r -----END PGP SIGNATURE----- --------------enig9719598ED429A4CEF3573244--