[28784] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: How can I prevent a user principal from accessing a

daemon@ATHENA.MIT.EDU (Jos Backus)
Sun Nov 25 02:59:49 2007

Date: Sat, 24 Nov 2007 23:59:51 -0800
From: Jos Backus <jos@catnook.com>
To: kerberos@mit.edu
Message-ID: <20071125075951.GA17551@lizzy.catnook.local>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <BAY124-W20D0BF889F9F6E8D667999B4740@phx.gbl>
Reply-To: jos@catnook.com
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

On Sun, Nov 25, 2007 at 09:40:34AM +0200, Amir Saad wrote:
> 
> I use MIT Kerberos 5 & OpenLDAP to manage my network users. I can login
> successfully to all machines using my Kerberos principal. I need to create a
> limited account that is able to access only a few hosts/services not all
> machines/services. How can I do this? 
> 
> Thank you

Fwiw, needing a similar capability I ended up following the advice given in
https://lists.ubuntu.com/archives/ubuntu-users/2007-August/120773.html (on
CentOS, in my case).

-- 
Jos Backus
jos at catnook.com
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[28784] in Kerberos

Re: How can I prevent a user principal from accessing a

daemon@ATHENA.MIT.EDU (Jos Backus)Sun Nov 25 02:59:49 2007

daemon@ATHENA.MIT.EDU (Jos Backus)
Sun Nov 25 02:59:49 2007