Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 05-28-2010, 03:29 AM   #1
Registered: Apr 2009
Posts: 74

Rep: Reputation: 16
Question LDAP user login, uidNumber restricting, how to

I am unable to find any ldap.conf parameter or pam.d/system-auth setting from where i can restrict the LDAP users having uidNumber less than a particular number, say 500 to login into the system

I am using OpenLDAP server and tried pam_max_uid 500 in ldap.conf but it didn't work

Any help wud be much appreciated

Thanx in Advance !!
Old 05-28-2010, 10:15 PM   #2
Registered: Jan 2008
Distribution: RHEL, CentOS, Ubuntu
Posts: 379

Rep: Reputation: 38
I would normally use access.conf to restrict access by group, especially since you are already using LDAP. Is that an option?
Old 11-28-2010, 02:05 AM   #3
Registered: Apr 2009
Posts: 74

Original Poster
Rep: Reputation: 16
Found that uidNumber/gidNumber only support = and != operator in filter. So <500 wouldn't be possible.
Anyways, I am now using !=0 for restricting root only
Marking it as SOLVED


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
ldap user can't login with xsession pazzport Linux - Server 3 09-16-2008 04:33 AM
LDAP user cannot login with GUI desktop pazzport Linux - Desktop 0 09-11-2008 12:30 PM
Chown fails in client login for user defined in ldap server jpsingh Linux - Server 2 12-19-2006 10:26 PM
Restricting user login times SuSE 9.1 Prof gekko9 Linux - Security 3 09-26-2004 10:54 AM
Restricting user login abbey_lincoln Linux - Security 1 03-26-2002 11:11 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:27 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration