Hi I am trying to set up a machine with access limited by pam security to certain NIS groups (not machine netgroups but GID usergroups). I am using a RedHat 6.1 machine which has a /etc/pam.d directory (rather than a pam.conf file). I thought I could use the pam_group module. In the documentation I read that I should do the following: In the file /etc/security/group.conf limit access to groups certain groups. I want to limit access to the group "staff" and hence in groups.conf I put in a line for rlogin rlogin;tty*;*;*;staff which means that (with a ";" separated field) I restrict rlogin (first field) for all tty's (second field) for all users (third field "*") at all times (fourth field "*") for all users "staff". Then, according to the pam instructions I put the following line in the file /etc/pam/d/rlogin: auth required /lib/security/pam_group.so which didn't make any difference (other NIS groups could still login). As I wasn't sure about the service-name, I also added the lines: passwd required /lib/security/pam_group.so session required /lib/security/pam_group.so account required /lib/security/pam_access.so to see if one of them would work. But none did. My question is: how do I use pam security to limit access to certain NIS groups? Do I have to refer to the NIS server somehow? And how could I extend that limitation to telnet, ftp and ssh? Is there a running pam-related daemon I have to restart to make the changes work? Any help will be most appreciated. Thanks Hugo -- Dr Hugo Bouckaert - Systems Administrator, Computer Science UWA Tel: +(61 8) 9380 2878 / Fax: +(61 8) 9380 1089 Email: [EMAIL PROTECTED] / Web: http://www.cs.uwa.edu.au/~hugo -====---====---====---====---====---====---====---====---====---====---====- to unsubscribe email "unsubscribe linux-admin" to [EMAIL PROTECTED] See the linux-admin FAQ: http://www.kalug.lug.net/linux-admin-FAQ/
