mos@fys.ruu.nl (Henk Mos) (05/27/91)
In our department we are using a server (DECsystem 5500, Ultix 4.1) en a number of client DECstations. Passwd en group files are distributed through yp. Every research group has its own group entry. I'm looking for a simple to maintain mechanism to assign workstation access (login, rsh, etc.) to one or more groups and/or users, but to continue the usage of yp. I'm sure this has been done before so any practical solution is welcome. Thanks in advance, Henk Mos -- ---------------------------------------------------------------------- Henk J. Mos, Dept of Physics and Astrophysics, Utrecht University The Netherlands. Phone: 31-30-532239 Email: mos@fys.ruu.nl ----------------------------------------------------------------------
shani@GENIUS.TAU.AC.IL (Oren Shani) (05/30/91)
Okay, Okay, Once and for all, this is how it is done:
1) Create netgroups (in /etc/netgroup), including the users list
for each workstation. e.g.:
ws1_users \
(,jenny,) \
(,jim,)
ws2_users \
(,jack,) \
(,greg,)
etc.. (of course, you may use any valid combination of previously defined
groups, etc.)
2) the password file of each workstation, should include all non humans and
an entry of the form
+@ws?_users:
and that's all. This will allow only users of group ws?_users to acess that
workstation.
There are some improuvments to this basic scheme that may come to mind, but
this is the basic idea.
Cheers,
--
--- --- Oren Shani (shani@genius.tau.ac.il)
/ / / Faculty of Engineering, Tel Aviv univ.
/ / --- Israel
/ / /
--- * --- * "And that's the last time I trust a woman!"