PAM - only allow domain group members to log on via ssh?
Hi,
I want to allow only one group member from my domain to log in to my gentoo box. Having got the group id (15020), with my uderstanding of PAM, I've done: Code:
auth sufficient pam_unix.so likeauth nullok |
I don't see anything in "auth" about group 15020.
|
I also tried that but it also didn't do the trick, I read on a web page that account ... was the line to add.
I'm using 2 accounts to test, 1 in the group 1 outside. The changes I've made either allow both to log in or neither. Is it possible that even when I've got the PAM right, it only compares the primary group that shows up when you do Code:
getent passwd user If so, this might explain something cos 15020 isn't the primary group of the user who is a member. |
I would guess that it only works on the primary group id.
|
All times are GMT -5. The time now is 06:34 PM. |