LDAP user login, uidNumber restricting, how to
I am unable to find any ldap.conf parameter or pam.d/system-auth setting from where i can restrict the LDAP users having uidNumber less than a particular number, say 500 to login into the system
I am using OpenLDAP server and tried pam_max_uid 500 in ldap.conf but it didn't work Any help wud be much appreciated Thanx in Advance !! |
I would normally use access.conf to restrict access by group, especially since you are already using LDAP. Is that an option?
|
Found that uidNumber/gidNumber only support = and != operator in filter. So <500 wouldn't be possible.
Anyways, I am now using !=0 for restricting root only Marking it as SOLVED |
All times are GMT -5. The time now is 10:32 AM. |