[Freeipa-users] Adding an IPA user that can't SSH?
KodaK
sakodak at gmail.com
Fri Jan 25 16:51:29 UTC 2013
On Fri, Jan 25, 2013 at 10:43 AM, Dmitri Pal <dpal at redhat.com> wrote:
> AFAIK there is also some kind of "no shell" capability in SSH which might be
> useful in this case but I am not a specialist in this area.
You can do this a few ways, but the easiest (IMO) is something like
this in sshd_config:
Match User limited-user
ForceCommand echo 'This is a non-interactive account'
This will cause that message to display if someone tries to log in
with that account.
More information about the Freeipa-users
mailing list