HPE Community
Operating System - HP-UX
1829242 Members
2561 Online
109987 Solutions
New Discussion

host-based authentication with ldap

 
John Ross_1
Occasional Advisor

‎08-30-2002 06:52 AM

‎08-30-2002 06:52 AM

host-based authentication with ldap

I am wanting to implement user authentication using LDAP for our HP-UX 11.X systems and need to know if you can limit access to specific machines based on attributes stored in each users record. It appears this can be done in Linux ("http://www.mandrakesecure.net/en/docs/ldap-auth.php" -- search for "Host-based Authentication"), and I was wondering if the same could be done in HP-UX 11.X. I have not been able to find this answer on my own, and was hoping that someone here might have figured this out.

Thanks.
0 Kudos
Reply
2 REPLIES 2
OneNeck UNIXSA
Frequent Advisor

‎08-30-2002 01:59 PM

‎08-30-2002 01:59 PM

Re: host-based authentication with ldap

Yes, It uses the same idea as netgroup.

Determined by this RFC.
ftp://ftp.isi.edu/in-notes/rfc2307.txt
0 Kudos
Reply
Bob Neal-Joslin
Trusted Contributor

‎09-11-2002 12:34 PM

‎09-11-2002 12:34 PM

Re: host-based authentication with ldap

LDAP-UX uses a "configuration profile", that follows the draft-joslin-config-profile-04.txt (www.ietf.org.) Using this profile, you can define search filters for the pam service if you're using PAM_LDAP for user authentication, which then limits which users are visible to pam, based on the attributes in the LDAP entry.

Bob
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.