[CentOS] Re: Fix passwd/shadow/group files?
Paul Heinlein
heinlein at madboa.com
Thu Jul 14 23:04:41 UTC 2005
On 7/14/05 3:15 PM, Ignacio Vazquez-Abrams wrote:
> On Thu, 2005-07-14 at 17:02 -0500, Les Mikesell wrote:
>
>>I might re-do it with LDAP someday, but it's probably
>>more work to control the users that aren't supposed to log into these
>>machines than to separately add the ones that are.
>
>
> Stuff pam_netgroups into system-auth then make a group per machine.
>
> http://www2.physics.umd.edu/~payerle/Software/PAM/
If you set up netgroups, you can specify login rights easily:
* /etc/passwd
[...]
+ at login-group
+:::::/dev/null:/sbin/nologin
* /etc/nsswitch.conf
passwd: compat
shadow: compat
group: files nis
netgroup: files nis
--
Paul Heinlein <> heinlein at madboa.com <> www.madboa.com
More information about the CentOS
mailing list