[32281] in Kerberos
kerberos@mit.edu
daemon@ATHENA.MIT.EDU (Dax Kelson)
Sat Apr 24 15:20:55 2010
From: Dax Kelson <dkelson@gurulabs.com>
To: jacky.forestier@orange-ftgroup.com
Date: Sat, 24 Apr 2010 13:20:45 -0600
Message-ID: <1272136845.6981.213.camel@localhost>
Mime-Version: 1.0
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hi Jacky,
As many folks have already mentioned, authorization is outside of the
scope of Kerberos.
Take a look at pam_listfile you can define an arbitrary white or black
list of users or groups and apply it against an service.
http://www.us.kernel.org/pub/linux/libs/pam/Linux-PAM-html/sag-pam_listfile.html
Dax Kelson
Guru Labs
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
