On Tue, Jun 02, 2015 at 11:11:56AM +0200, Yves Degauquier wrote: > Hi, > > I have a FreeIPA server in place with netgroup in order to limit access to > some users only to some hosts (by environment). > > It works fine on AIX clients. > > But now I try to do the same with Linux. > > I register the client in the server, without any problem, all users from > FreeIPA can login in the Linux boxes. > > I activate now pam_access and configure the /etc/security/access.conf to > allow local root user and users from netgroup. > > But my users in the netgroup can't login... If in place of the netgroup I > put the name of the users, the users defined can login... > > But this is not anymore a centally managed user... > > Any idea of what the problem could be? > > Thanks in advance for your help.
Does getent netgr report the host as a member of the netgroup? -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
