Setting Up Ssh Access For Lum-Enabled Edirectory Users - Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009 Implementation Manual

Planning and implementation guide

Hide thumbs

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

288

page of 288

/ 288
Contents
Table of Contents
Bookmarks

Table of Contents

Therefore, because SSH access requires that all of a user's groups must all allow access, Samba

users are denied SSH access unless

The user is removed from the Samba group.

The Samba group is modified to allow SSH access for all Samba users.

SSH Security Considerations

Remember that SSH access lets users browse and view most directories and files on a Linux server.

Even though users might be prevented from modifying settings or effecting other changes, there are

serious security and confidentiality issues to consider before granting SSH access to anyone.

11.4.2 Setting Up SSH Access for LUM-enabled eDirectory

Users

If you need to grant SSH access to an eDirectory user, complete the instructions in the following

sections in order, as they apply to your situation.

"Allowing SSH Access Through the Firewall" on page 95

"Adding SSH as an Allowed Service in LUM" on page 95

"Enabling Users for LUM" on page 96

"Restricting SSH Access to Only Certain LUM-Enabled Users" on page 96

"Providing SSH Access for Samba Users" on page 97

Allowing SSH Access Through the Firewall

1 On the OES 2 server you are granting access to, open the YaST Control Center and click

Security and Users > Firewall.

2 In the left navigation frame, click Allowed Services.

3 In the Allowed Services drop-down list, select SSH.

4 Click Add > Next > Accept.

The firewall is now configured to allow SSH connections with the server.

Adding SSH as an Allowed Service in LUM

1 If SSH is already an allowed service for Linux User Management on the server, skip to

"Enabling Users for LUM" on page

If SSH is not an allowed service for Linux User Management on the server, continue with

Step

2 On the OES 2 server, open the YaST Control Center; then, in the Open Enterprise Server

group, click OES Install and Configuration.

3 Click Accept.

4 When the Novell Open Enterprise Server Configuration screen has loaded, click the Disabled

link under Linux User Management.

The option changes to Enabled and the configuration settings appear.

96.

Managing OES 2

Table of Contents

This manual is also suitable for:

Open enterprise server 2 sp2

Setting Up Ssh Access For Lum-Enabled Edirectory Users - Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009 Implementation Manual

Related Manuals for Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009

Related Content for Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009

This manual is also suitable for:

Table of Contents