Announcement Announcement Module
Collapse
No announcement yet.
host authentication / per-host basis does not work properly Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • host authentication / per-host basis does not work properly

    Hi

    I use here a network with Gentoo and KDE Desktop. I will use the "pam_check_host_attr" for per-host authentication. What have i done:

    - I added the "ldapns.schema"
    - Add hostrules to users
    - Add pamoptions to the clients

    But it only works when a user log in with SSH. If you want to log on kdm or Terminal, you get the message: "Access denied for this host" but it still works.

    Iadd this line to the client at the /etc/ldap.conf
    Code:
    pam_check_host_attr     yes
    Change the "/etc/pam.d/sshd" to
    Code:
    auth            sufficient      pam_ldap.so             no_warn try_first_pass
    account         required        pam_ldap.so             ignore_unknown_user ignore_authinfo_unavail
    session         required        pam_mkhomedir.so        skel=/etc/skel umask=0077
    password        include         system-remote-login
    What is wrong? What is missing?

    Greetings
    Directoryhunter
Working...
X