Novell OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010 Implementation Manual page 95
Planning and implementation guide
Hide thumbs
Also See for OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010:
- Manual (78 pages)
Table of Contents
Advertisement
6 Click the Linux Profile tab.
7 Select the Enable Linux Profile option.
8 In the Add UNIX Workstation dialog box, browse to and select the UNIX Workstation objects
for the servers you are restricting SSH access to, then click OK > OK.
9 Click Apply > OK.
10 In the Roles and Tasks list, click Modify Object, browse to the group again, then click OK.
11 Click the Other sub-tab.
12 In the Unvalued Attributes list, select uamPosixPAMServiceExcludeList, then click the
left-arrow to move the attribute to the Valued Attributes list.
13 In the Add Attribute dialog box, click the plus sign (+) next to the empty drop-down list.
14 In the Add item field, type
15 Click the Members tab.
16 Browse to and select the User objects that shouldn't have SSH access, then click OK.
17 Click Apply > OK.
Providing SSH Access for Samba Users
There are two options for providing SSH access to users who have been enabled for Samba access:
You can remove the user from the server_name-W-SambaUserGroup.
IMPORTANT: This presupposes that the user is a member of a different LUM-enabled group
that also provides access to the server. If the user was enabled for LUM only as part of a Samba
configuration, then removing the user from the Samba group breaks access to Samba and the
user does not have SSH access.
You can change access for the entire Samba group by moving the
uamPosicPAMServiceExcludeList attribute from the Valued Attributes list to the Unvalued
Attributes list, using the instructions in
Users" on page 94
as a general guide.
NOTE: Although the option to disable SSH access through the Modify Group iManager plug-
in is much more simple and straightforward, that option is not working as of this writing.
Although the plug-in appears to deselect sshd as an allowed service, the service is still selected
when group information is reloaded. Novell plans to address this issue in the near future.
, then click OK > OK.
sshd
"Restricting SSH Access to Only Certain LUM-Enabled
Managing OES 2
95
Advertisement
Table of Contents
Related Manuals for Novell OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010
Related Products for Novell OPEN ENTERPRISE SERVER - PLANNING AND IMPLEMENTATION GUIDE 12-2010
- NOVELL EDIRECTORY 8.8 SP2 - GUIDE 10-2007
- NOVELL EDIRECTORY 8.8 SP5 - GUIDE 12-2009
- NOVELL IDENTITY MANAGER 3.6.1 - WORKORDER DRIVER IMPLEMENTATION GUIDE 18-12-2009
- NOVELL LINUX ENTERPRISE 11 - SUBSCRIPTION MANAGEMENT TOOL GUIDE 10-02-2009
- NOVELL LINUX ENTERPRISE DESKTOP 11 - ADMINISTRATION GUIDE 17-03-2009
- NOVELL OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009
- NOVELL PLATESPIN ORCHESTRATE 2.0.2 - UPGARDE GUIDE 10-09-2009
- NOVELL PLATESPIN ORCHESTRATE 2.0.2 - VIRTUAL MACHINE MANAGEMENT GUIDE 10-17-2009
- NOVELL PRODUCT NAME 10.3 - DEPLOYING ZENWORKS ON CITRIX SERVER BEST PRACTICES GUIDE 12-13-2010
- NOVELL SERVER CONSOLIDATION MIGRATION TOOLKIT 1.1 - ADMINISTRATION GUIDE 12-23-2005
- NOVELL ZENWORKS APPLICATION VIRTUALIZATION 8.0.2 - INTEGRATION AND STREAMING GUIDE 11-2010
- NOVELL INTELLISYNC MOBILE SUITE 7.0 - SECURE GATEWAY ADMINISTRATOR GUIDE 04-2006
- NOVELL LINUX ENTERPRISE SERVER 10 - STORAGE ADMINISTRATION GUIDE 7-2007
- NOVELL LINUX ENTERPRISE SERVER 10 SP2 - STARTUP GUIDE 05-08-2008
- NOVELL OPEN ENTERPRISE SERVER 2 SP2 - LAB GUIDE 01-19-2010
- NOVELL PLATESPIN ORCHESTRATE 2.0.2 - HIGH AVAILABILITY CONFIGURATION GUIDE 06-17-2009