[Freeipa-users] HBAC rules not working
JR Aquino
JR.Aquino at citrix.com
Thu Nov 24 03:02:42 UTC 2011
On Nov 23, 2011, at 5:41 PM, Steven Jones wrote:
> Hi,
>
> Even a reboot doesnt fix the ghost host group issue...
>
> Can it be dont via the cli?
ipa hbacrule-add-host --hostgroups=hostgroup_name hbacrule_name
Also you may be running into a problem with source hosts... You do need to specify from which hosts you are allowing ssh if I recall correctly. Assuming that you want to permit _from_ any source host:
ipa hbacrule-mod --srchostcat=all hbacrule_name
More information about the Freeipa-users
mailing list