Using PAM for additional SSH/Console authentication
Ed Wilts
ewilts at ewilts.org
Wed Apr 28 22:27:42 UTC 2004
On Wed, Apr 28, 2004 at 01:29:43PM -0700, Yagi Angrypants wrote:
> A while ago I had configured an RH box so that ssh
> users had to have their account names entered into a
> text file (in addition to the "usual" requirements) in
> order to be able to ssh into a machine.
>
> I can't remember how to do this now. I'd like to
> configure a box I have now so that ssh and console
> users need to have their accounts specificially
> entered into additional text files to permit such
> access. Can someone point me to a good link that
> discusses modifying the PAM configuration to
> accomplish this?
The easiest way to do this is via the sshd_config file that forces users
to be members of a group to allow the ssh login. man sshd_config and
search for AllowGroup
Console users are handled via /etc/securetty I think.
--
Ed Wilts, Mounds View, MN, USA
mailto:ewilts at ewilts.org
Member #1, Red Hat Community Ambassador Program
More information about the redhat-list
mailing list