You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
While setting up AD integration, it would be ideal to support a declarative list of users/groups that are permitted to log in to the system.
some example commands are:
realm permit [email protected] BAR.COM\foo Add domain users to the permit list realm permit -g Administrators [email protected] Add Domain groups to the permit list realm permit -x [email protected] Widthdraw user from permit list realm permit -x -g Administrators Widthdraw group from permit list realm dent --all Deny all logins from the domain, only supported command for deny, realm: Specifying deny without --all is deprecated. Use realm permit --withdraw
I think it would also benefit to have a similar option to exclusive from the ansible.posix.authotrized_key module to hold a declarative list of allowed logins to be held in ansible
there are only 3 states for permitted login:
Allow all
Allow specified
Deny all
so this will require a check to ensure deny is not set along the permit
The text was updated successfully, but these errors were encountered:
While setting up AD integration, it would be ideal to support a declarative list of users/groups that are permitted to log in to the system.
some example commands are:
realm permit [email protected] BAR.COM\fooAdd domain users to the permit listrealm permit -g Administrators [email protected]Add Domain groups to the permit listrealm permit -x [email protected]Widthdraw user from permit listrealm permit -x -g AdministratorsWidthdraw group from permit listrealm dent --allDeny all logins from the domain, only supported command for deny,realm: Specifying deny without --all is deprecated. Use realm permit --withdrawI think it would also benefit to have a similar option to
exclusivefrom the ansible.posix.authotrized_key module to hold a declarative list of allowed logins to be held in ansiblethere are only 3 states for permitted login:
so this will require a check to ensure deny is not set along the permit
The text was updated successfully, but these errors were encountered: