GSSAPI SSH WIN 2003
From: satya vadali (satyavadali_at_gmail.com)
Date: 07/29/05
- Next message: David: "Re: SSH on Z/OS 1.4"
- Previous message: jochen.wiedmann_at_gmail.com: "Re: Known hosts file and host with multiple SSH ports"
- Next in thread: Richard E. Silverman: "Re: GSSAPI SSH WIN 2003"
- Reply: Richard E. Silverman: "Re: GSSAPI SSH WIN 2003"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 29 Jul 2005 09:08:47 -0700
I got my GSSAPI authentication working. But, wondering how one restrict
users (if i want to) in reaching my hosts.
My setup:
SSH Server: HP-UX Secure Shell 4.0 (based OpenSSH 4.x)
KDC: Windows 2003
SSH Clients: Putty at this time.
(some how, F-secure SSH client some how not working with GSSAPI)
What I am looking for is:
AllowGroups/AllowUsers/DenyUsers based on their type of authentication.
Ex:
DenyUsers GSSAPI *
AllowGroups GSSAPI my_friends
Other option for me, restrict at service ticket level from Windows AD
2003 level. I am not sure how and is it possible?
Say i have global group in AD called "my friends":
Add my friends to "my friends" group and only users in "my friends"
group will get Service ticket for my HP-UX box.
Can any one give me right pointers in this.
any help in this regards will be helpful to me
thanks
satya
- Next message: David: "Re: SSH on Z/OS 1.4"
- Previous message: jochen.wiedmann_at_gmail.com: "Re: Known hosts file and host with multiple SSH ports"
- Next in thread: Richard E. Silverman: "Re: GSSAPI SSH WIN 2003"
- Reply: Richard E. Silverman: "Re: GSSAPI SSH WIN 2003"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
