<div>Kwan,</div>
<div> </div>
<div>I added the ldif file under /etc/dirsrv/slapd-389-ds/schema</div>
<div>but there is no file by name ldap.conf under /etc/ directory.</div>
<div>yes I do have /etc/openldap/ldap.conf but it doesnt have pam_attr like stuff its simply 10-12 lines file.</div>
<div>yes I do have that in client where I installed through yum.</div>
<div> </div>
<div> </div>
<div>Also, I am confused about:</div>
<div> </div>
<div>From the Account Listing<br> Select Field in ObjectClass<br></div>
<div>Where AccountListing option gets displayed.</div>
<div>I dont see any option by that option.</div>
<div> </div>
<div><br><br> </div>
<div class="gmail_quote">On Wed, Jan 13, 2010 at 12:08 AM, Kwan Lowe <span dir="ltr"><<a href="mailto:kwan.lowe@gmail.com">kwan.lowe@gmail.com</a>></span> wrote:<br>
<blockquote style="BORDER-LEFT: #ccc 1px solid; MARGIN: 0px 0px 0px 0.8ex; PADDING-LEFT: 1ex" class="gmail_quote">2010/1/12 Ajeet S Raina <<a href="mailto:ajeetraina@gmail.com">ajeetraina@gmail.com</a>>:<br>
<div class="im">><br><br>> Say I have a 389 Client Machine 10.209.33.77<br>> Now if I add this hostname<br>> So that user can only access this Host and not the other Right?<br>><br>> Pls clarify.How can I stop a particular user to access only that machine?<br>
<br></div>This is how I did it:<br><br>Create Host Based access<br> Add the 61ldapns.ldif file to /etc/dirsrv/instancename/schema<br> edit /etc/ldap.conf and enable pam_check_host_attr<br><br>Go to the management console, then:<br>
From the Account Listing<br> Select Field in ObjectClass<br> Add Value<br> Select HostObject<br> Select Add Attribute<br> Select Host<br> Enter first host<br> Select Host<br> Enter Add Value<br> Enter second host<br>
Continue for all hosts<br><br><br><a href="https://sites.google.com/site/disciplinux/linux/centralized-authentication" target="_blank">https://sites.google.com/site/disciplinux/linux/centralized-authentication</a><br>><br>
<font color="#888888">--<br>389 users mailing list<br><a href="mailto:389-users@lists.fedoraproject.org">389-users@lists.fedoraproject.org</a><br><a href="https://admin.fedoraproject.org/mailman/listinfo/389-users" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/389-users</a><br>
</font></blockquote></div><br><br clear="all"><br>-- <br><br><br>”It is not possible to rescue everyone who is caught in the Windows quicksand<br> --Make sure you are on solid Linux ground before trying.”<br><br>
<br>