LinuxQuestions.org
Review your favorite Linux distribution.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page [SOLVED] Login : Check LDAP Before SSH Key
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-13-2014, 07:47 PM   #1
tkinsella
Member
 
Registered: Dec 2005
Distribution: CentOS 6.5
Posts: 45

Rep: Reputation: 0
Post Login : Check LDAP Before SSH Key

How can I configure PAM (or SSHD) To check and see if the user has a valid LDAP account before accepting their SSH Public Key for login?

I have issues where when employees are removed from LDAP, they can still login because they have a public key. I would prefer to have the system check LDAP first so I don't have to focus on removing these keys from 100's of boxes first.

In the meantime I'll write a script to hit each server and remove the key, but this is still hard to manage as servers come and go....


Thanks!
 
Old 01-14-2014, 02:24 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985Reputation: 1985
If there is no LDAP account then there shouldn't be enough information provided to get user details in the first place. Where is the user account info coming from? Are they locally created? Sounds like, if this is the case, a home brew system like you suggest may well be the best way in absence of a well managed environment.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
ldap server cant login with ssh mrjoli021 Linux - Server 1 11-13-2012 11:58 AM
[SOLVED] Cannot login via ssh with key just-to-be Linux - Software 2 07-31-2012 08:19 AM
Putty/SSH login failed when using RSA public key: 'Server refused our key' itsecx@gmail.com Linux - Server 10 10-04-2010 01:19 PM
[SOLVED] SSH login with public key issue ZAMO Linux - Security 3 07-02-2010 03:36 PM
Shared Key ssh login only pccdrussell Linux - General 2 10-19-2007 06:20 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:40 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration