> > Simon Reber wrote:
> >
> > The question we now would like to ask: Is there any limitation of
the
> > nss_initgroups_ignoreusers field/option (since it seems to work with
> > only two users in the list)
> >
> > Or does someone see any misconfiguration in our configuration?
> We have this specific section:
>
> timelimit 15
> bind_timelimit 5
> nss_reconnect_sleeptime 1
> nss_reconnect_maxsleeptime 8
> nss_initgroups_ignoreusers root,dbus
> bind_policy soft
>
> and we are able to login as root at console also without network
connection,
> after 15 secs of timeout.
>
> Hoping it is useful.
Yes, thanks this is very helpful - I'll came across those options some
days ago and started to use them too.
But for me the question remains, why it works when:
nss_initgroups_ignoreusers is set to root,sshd (only two
entries)
but not for:
nss_initgroups_ignoreusers
root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman,n
scd,gdm (multiple entries - number can vary)
Cheers,
Simon
_______________________________________________
rhelv5-list mailing list
[email protected]
https://www.redhat.com/mailman/listinfo/rhelv5-list
