10-04-2018
Pam.d and make difference between AD User and local user on Linux
Hello,
i configured rhel linux 6 with AD directory to authorize windows users to connect on the system and it works.
i have accounts with high privileges (oracle for example) if an account is created on the AD server i would to block him.
I looked for how to do, for the moment all the examples used group on the Ad server but i would like to manage this from linux server. Do you have an idea ?
Regards,
Vincenzo
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
how can i find my own ip address from unix. command like who -x .this would provide all the ip address but i need to list only current user ip address. who am i command does not display the ip. (1 Reply)
Discussion started by: naushad
1 Replies
2. UNIX for Dummies Questions & Answers
how can i find my own ip address from unix. command like who -x .this would provide all the ip address but i need to list only current user ip address. who am i command does not display the ip. (9 Replies)
Discussion started by: naushad
9 Replies
3. UNIX for Dummies Questions & Answers
Thanks
AVKlinux (3 Replies)
Discussion started by: avklinux
3 Replies
4. OS X (Apple)
Hi,
I'm brand new here and looking for a solution:
I'm using mail or mailx. The default reply address is «myshortusername@mylongusername.local» which makes absolutely no sense for anybody receiving my emails.
But how do I change it? There seem to be many solutions but none for Mac OS X.... (0 Replies)
Discussion started by: gczychi
0 Replies
5. UNIX for Advanced & Expert Users
Besides doing some shell-script which loops through /etc/passwd, I was wondering if there was some command that would tell me, like an enhanced version of getent.
The Operating system is Solaris 10 (recent-ish revision) using Sun DS for LDAP. (5 Replies)
Discussion started by: ckmehta
5 Replies
6. Shell Programming and Scripting
Hi Gurus,
I have a script that requires me to switch from local user to root. Anyone who has an idea on this since when i switch user to root it requires me to input root password.
It seems that i need to use expect module here, but i don't know how to create the object for this.
... (1 Reply)
Discussion started by: linuxgeek
1 Replies
7. Solaris
Here is the log im pasting for verbose ssh:
-bash-2.05b$ ssh -v qa_fnp@10.41.11.23
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will... (5 Replies)
Discussion started by: kirtikjr
5 Replies
8. UNIX for Dummies Questions & Answers
How to fetch only local user without duplication from /etc/passwd using scripting?? (4 Replies)
Discussion started by: AhmedLakadkutta
4 Replies
9. Red Hat
Hi
We have these specific requirements for a bunch of servers we have and cannot seem to get pam to behave in this way. We would like:
PAM locks accounts if pam tally reaches 10.
PAM unlocks the account after 30mins from locking it, and resets the pam_tally.
The key is that we don't... (0 Replies)
Discussion started by: snoop2048
0 Replies
10. Shell Programming and Scripting
Hi,
I need to switch from local user to root user in a shell script.
I need to make it automated so that it doesn't prompt for the root password.
I heard the su command will do that work but it prompt for the password.
and also can someone tell me whether su command spawns a new shell or... (1 Reply)
Discussion started by: Little
1 Replies
LEARN ABOUT DEBIAN
grab-account
GRAB-ACCOUNT(8) chiark utilities GRAB-ACCOUNT(8)
NAME
grab-account - add new account synchronised to remote system
SYNOPSIS
grab-account local-user source [remote-user]
DESCRIPTION
grab-account reconfigures sync-accounts to start synchronising a specified local user (which may not yet exist) from a specified remote
system, and then invokes sync-accounts once to synchronise from that source.
/etc/sync-accounts/createuser should contain a addhere line in the appropriate source section (ie, after host source). grab-account adds a
user local-user [remote=remote-user]
directive just before addhere and runs sync-accounts source.
EXIT STATUS
0 All went well.
any other
There were problems.
FILES
/etc/sync-accounts; See also sync-accounts(8).
ENVIRONMENT
See sync-accounts(8).
BUGS
There is no locking of /etc/sync-accounts so do not invoke grab-account from a script, or more than once at a time by hand. Do not edit
/etc/sync-accounts by hand and also simultaneously run grab-account.
The mechanism involving addhere is suboptimal. This should be done with an include feature in sync-accounts, so that grab-account does not
have to edit a configuration file that really belongs to the sysadmin.
AUTHOR
grab-account and this manpage are part of the sync-accounts package which was written by Ian Jackson <ian@chiark.greenend.org.uk>. They
are Copyright 1999-2000,2002 Ian Jackson <ian@davenant.greenend.org.uk>, and Copyright 2000-2001 nCipher Corporation Ltd.
The sync-accounts package is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as
published by the Free Software Foundation; either version 3, or (at your option) any later version.
This is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program; if not, consult the Free Software Foundation's
website at www.fsf.org, or the GNU Project website at www.gnu.org.
SEE ALSO
sync-accounts(8), sync-accounts(5), passwd(5)
Greenend 14th July 2002 GRAB-ACCOUNT(8)