I am looking for some advice - my goal is to have users with separate
permissions for different clients based upon client name. I am using AuthBy PAM
(kerberos) for password authentication, and requiring AuthBy File for specifying
which users are valid and defining their return attributes.
I was considering using mulitiple realms which are defined by the client name,
with each realm using a different users file and all realms using AuthBy PAM for
password authentication.
I was hoping to be able to easily specify the realm through some form of regular
expression (domain name). Since the <Client> identifier doesn't support regular
expressions, how are others handling this type of situation? Seems that listing
all the IP addresses gets a bit tedious when you have even a few clients.
Is there a way to use a single realm and do something equivalent in concept to
the following?
<AuthBy File>
if (%C =~ /domain/ ) {
Filename users.foo
}
if (%C =~ /domain2/ ) {
Filename users.bar
}
</AuthBy File>
Does anyone have suggestions?
Thanks,
Rakesh Patel.
===
Archive at http://www.thesite.com.au/~radiator/
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
