On 07/16/2015 06:07 AM, Ondrej Valousek wrote:

Hi List,

 

We I know I am probably crying at the wrong grave – but I’ll give it a try anyway J:

 

Does anyone know if I can somehow prevent new users from logging in to a certain machine? We have a logon server here with SSSD which needs a maintenance.

I know there is pam_nologin, but I still need to allow users with disconnected NX sessions there to connect and properly terminate those.


What kind of central access control you use?
You can set something in your LDAP if you use LDAP based access control or change HBAC rules if you use IPA.

 

Thanks,

Ondrej

-----

The information contained in this e-mail and in any attachments is confidential and is designated solely for the attention of the intended recipient(s). If you are not an intended recipient, you must not use, disclose, copy, distribute or retain this e-mail or any part thereof. If you have received this e-mail in error, please notify the sender by return e-mail and delete all copies of this e-mail from your computer system(s). Please direct any additional queries to: communications@s3group.com. Thank You. Silicon and Software Systems Limited (S3 Group). Registered in Ireland no. 378073. Registered Office: South County Business Park, Leopardstown, Dublin 18.


_______________________________________________
sssd-users mailing list
sssd-users@lists.fedorahosted.org
https://lists.fedorahosted.org/mailman/listinfo/sssd-users


-- 
Thank you,
Dmitri Pal

Director of Engineering for IdM portfolio
Red Hat, Inc.