pam_group does not support NSS groups
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
pam (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: libpam-modules
The pam_group module allows assigning groups based on group membership. This is handy, if for example you want to automagically enable various rights on a specific server dependant on a users membership in a given netgroup. The following line in /etc/security/
*;*;@developers
Unfortunately, this only works for NIS net groups. This isn't much help if your network groups are held in LDAP, which are recognized as normal NSS groups.
Patch is attached which fixes this. NSS groups are recognized by '%'. Ie;
*;*;%someldapgr
summary: |
- pam_group does support NSS groups + pam_group does not support NSS groups |
Changed in pam (Ubuntu): | |
status: | New → Fix Released |
Any chance for Edward's patch to be included in a release? Otherwise, what is the best way for me to apply this patch myself to my own systems? Or is there a better / alternative solution for the same requirement? Thanks!