Talk:Restricting LDAP pam logins

From Gentoo Wiki
Jump to: navigation, search
Note
This is a talk page. Please add newer comments below older ones, and sign your comments using four tildes (~~~~). When adding a new section (at the bottom of the page), please mark it as "open for discussion" by using {{talk|open}} so it will show up in the list of open discussions.

pam_login is documentetd but not how to allow only special users to login from LDAP DC.

With this setting a group or user from LDAP gets only a granded login if listed in the /etc/passwd file with +@ by a user or group entry.

This is used for all PAM LDAP logins: SSH, FTP, MySQL or what ever you use with LDAP PAM.

This is a passwd LDAP feature.

The "passwd_compat: ldap" setting is not documented in the offical Documentation from the nsswitch.conf, neither an option with "+@" for allowes users / groups is documented there.


I can't see any of this settings in the Offical Documentation with LDAP.