(ASCEND) Denying certain users a radius login

To: ascend-users@bungi.com
Subject: (ASCEND) Denying certain users a radius login
From: Aaron Holtz <aholtz@network1.net>
Date: Thu, 6 Nov 1997 16:42:47 -0500 (EST)
Sender: owner-ascend-users@max.bungi.com

Howdy,

	I'm interesting in being able to tell radius that either:

1.  Anyone in a particular unix group isn't allowed access

or

2.  Anyone with a particular unix shell isn't allowed access


We have 33,000+  accounts in our password file, so moving everyone over to
the radius file isn't really an option.  Right now radius does a unix
style authentication.  We also use xtacacs which allows me to prohibit
users from logging in based on their group number.  But I could live with
being able to disallow them access based on their shell as well.
Is there anyway of doing this????  Any suggestions, hints, locations to
faq's or docs that describe a radius feature that could implemented to
handle this would be greatly appreciated.

-------------------------------------------------------------------------
Aaron Holtz
First Network Group    "The First Name in Internetworking"
Manager, UNIX Systems Admin
Email:  aholtz@stockcar.network1.net
"Those that do not accept Unix are doomed to reproduce it"
-------------------------------------------------------------------------

++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

Follow-Ups:

Re: (ASCEND) Denying certain users a radius login

From: Damien Miller <dmiller@prometheus.projectx.com.au>

Prev by Date: Re: (ASCEND) Question about security
Next by Date: (ASCEND) Should I go with 5.0Ap13?
Prev by thread: Re: (ASCEND) Should I go with 5.0Ap13?
Next by thread: Re: (ASCEND) Denying certain users a radius login
Index(es):
- Main
- Thread