Using pam_tacas+ module for user validating
Hi guys.
I got this assignment to implement a RHEL7 server in a env. where they use Cisco ISE login/passwd server, for validating/AD-grouping against a windows (sorry!!) AD server.
I have succeed to get it working with pam_tacplus-1.3.9-1.x86_64. (own compiling). ISE is validating passwd!!
But now i would like to have the opportunity to get different group ID from different user based on there AD membership, so I can control who do what with sudo.
My knowledge about ISE/AD is very small, but hope that somone have tried something similar ??
Regards
JBidstrup
|