Possibility to use the pam_check_host_attr feature when using the trust model
Possibility to use the pam_check_host_attr feature when using the trust model
Now the trust model is based on a specific schema and in the pam configuration we must use pam_filter.
However, pam provides the pam_check_host_attr feature which allows to check directly on the hostname without filter considering the host LDAP field.
It would be nice to make FD compliant with this feature which is nicer than a pam_filter. (Specific message when access denied)
Of course only, if technically it is possible :)
(from redmine: issue id 528, created on 2011-11-08, closed on 2012-03-02)
- Changesets:
- Revision 88cbd9b4 by Benoit MORTIER on 2012-02-28T16:13:54.000Z:
Fixes: #528 Possibility to use the pam_check_host_attr feature when using the trust model- Revision a2a978f3 by Benoit MORTIER on 2012-02-28T17:14:29.000Z:
Fixes: #528 Possibility to use the pam_check_host_attr feature when using the trust model- Revision bdf66694 by Benoit MORTIER on 2012-02-28T18:11:31.000Z:
Fixes: #528 Possibility to use the pam_check_host_attr feature when using the trust model- Revision 1a264ffc by Benoit MORTIER on 2012-02-28T18:15:08.000Z:
Fixes: #528 Possibility to use the pam_check_host_attr feature when using the trust model- Revision 06f565d7 by Benoit MORTIER on 2012-02-29T09:31:06.000Z:
Fixes: #528 Possibility to use the pam_check_host_attr feature when using the trust modelActivity
Hello,
yes this is very nice and use the /usr/share/doc/libpam-ldap/ldapns.schema in the pam_ldap package. Explanation in the debian wiki is here
http://wiki.debian.org/LDAP/PAM
(from redmine: written on 2012-01-20)
By bmortier on 2017-09-02T14:40:07 (imported from GitLab)
added Added PJ1802-0188 fusiondirectory-core labels
removed Interface label
removed Bugs label
