[CentOS] restricting access to an NIS netgroup

Paul Heinlein heinlein at madboa.com
Tue Nov 8 22:46:20 UTC 2011


On Tue, 8 Nov 2011, James A. Peltier wrote:

> acccess.conf supposed to support this type of functionality thereby 
> not needing to modify /etc/passwd / /etc/shadow!?!

You'll probably need to add a pam_access.so reference to the stock
/etc/pam.d/password-auth. Make the first "account" line

   account  required  pam_access.so

Also, I assume that your system can access your netgroups properly, 
i.e., getent can see them:

   getent netgroup $groupname

-- 
Paul Heinlein <> heinlein at madboa.com <> http://www.madboa.com/



More information about the CentOS mailing list